CVE-2014-0192

Foreman 1.4.0 before 1.5.0 does not properly restrict access to provisioning template previews, which allows remote attackers to obtain sensitive information via the hostname parameter, related to "spoof."

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://projects.theforeman.org/issues/5436	Exploit Vendor Advisory
http://theforeman.org/security.html	Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1092354	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:theforeman:foreman:1.4.0:::::::*
	cpe:2.3:a:theforeman:foreman:1.4.1:::::::*
	cpe:2.3:a:theforeman:foreman:1.4.2:::::::*
	cpe:2.3:a:theforeman:foreman:1.4.3:::::::*
	cpe:2.3:a:theforeman:foreman:1.4.4:::::::*

History

No history.

Information

Published : 2014-05-08 14:29

Updated : 2024-02-28 12:20

NVD link : CVE-2014-0192

Mitre link : CVE-2014-0192

CVE.ORG link : CVE-2014-0192

JSON object : View

Products Affected

theforeman

foreman

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2014-0192", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-05-08T14:29:14.033", "references": [{"url": "http://projects.theforeman.org/issues/5436", "tags": ["Exploit", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://theforeman.org/security.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1092354", "tags": ["Patch"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Foreman 1.4.0 before 1.5.0 does not properly restrict access to provisioning template previews, which allows remote attackers to obtain sensitive information via the hostname parameter, related to \"spoof.\""}, {"lang": "es", "value": "Foreman 1.4.0 anterior a 1.5.0 no restringe debidamente acceso a la provisi\u00f3n de vistas preliminares de plantillas, lo que permite a atacantes remotos obtener informaci\u00f3n sensible a trav\u00e9s del par\u00e1metro hostname, relacionado con 'falsificar.'"}], "lastModified": "2023-02-13T00:36:16.267", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:theforeman:foreman:1.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E85D7723-0DF9-43C4-A0FF-5C2835C98DEC"}, {"criteria": "cpe:2.3:a:theforeman:foreman:1.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29BA1DF0-D6D0-4D3D-9509-55AB11D2D336"}, {"criteria": "cpe:2.3:a:theforeman:foreman:1.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "949634A2-38B2-4BBE-B73E-0D3FC34A7728"}, {"criteria": "cpe:2.3:a:theforeman:foreman:1.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7A2CC92-CC4D-4CA7-9979-7414575F0E0C"}, {"criteria": "cpe:2.3:a:theforeman:foreman:1.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AF6933C-8D33-453D-B497-6C9C76DF09F6"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}