← back
CVE-2015-3235

CVE-2015-3235

EPSS 1.6%
Foreman before 1.9.0 allows remote authenticated users with the edit_users permission to edit administrator users and change their passwords via unspecified vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://projects.theforeman.org/issues/10829https://access.redhat.com/errata/RHSA-2015:1591https://access.redhat.com/errata/RHSA-2015:1592https://bugzilla.redhat.com/show_bug.cgi?id=1232366http://theforeman.org/manuals/1.9/index.html#Releasenotesfor1.9