Privilege escalation in Foreman



Risk Low
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2016-4451
CWE-ID CWE-254
Exploitation vector Network
Public exploit N/A
Vulnerable software
 Foreman
Web applications / Remote management & hosting panels

Vendor Foreman

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Privilege escalation

EUVDB-ID: #VU10746

Risk: Low

CVSSv4.0: 0.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-4451

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote authenticated attacker to bypass security restrictions.

The weakness exists due to improper enforcement of access controls on certain resources. A remote attacker can bypass organization and location restrictions and read or modify data for an arbitrary organization by leveraging knowledge of the id of that organization.

Mitigation

Update to versions 1.11.3 or 1.12.0-RC1.

Vulnerable software versions

Foreman: 1.11.0 - 1.12.0

CPE2.3 External links

https://theforeman.org/security.html#2016-4451


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###