Improper Privilege Management in Foreman - CVE-2017-7505
Published: May 26, 2017 / Updated: August 8, 2020
Vulnerability identifier: #VU38940
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2017-7505
CWE-ID: CWE-269
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Foreman
Affected software:
Foreman
Foreman
Detailed vulnerability description
The vulnerability allows a remote authenticated user to execute arbitrary code.
Foreman since version 1.5 is vulnerable to an incorrect authorization check due to which users with user management permission who are assigned to some organization(s) can do all operations granted by these permissions on all administrator user object outside of their scope, such as editing global admin accounts including changing their passwords.
How to mitigate CVE-2017-7505
Install update from vendor's website.