← back
CVE-2020-10778

CVE-2020-10778

EPSS 0.9%
In Red Hat CloudForms 4.7 and 5, the read only widgets can be edited by inspecting the forms and dropping the disabled attribute from the fields since there is no server-side validation. This business logic flaw violate the expected behavior.
Affected products
n/a · CloudForms

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://access.redhat.com/security/cve/cve-2020-10778https://bugzilla.redhat.com/show_bug.cgi?id=1847628