CVE-2026-5135
Foreman: foreman: unauthorized modification of host configurations via broken access control
Vexday Risk Score
10Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.5EPSS —KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Ciclo de vida
01 jul 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A flaw was found in Foreman. This broken access control vulnerability allows an authenticated user with host-edit permissions to retarget an existing lookup value override to a different host. This is achieved by modifying the match field through nested host attributes, effectively bypassing authorisation checks. The consequence is the potential for unauthorised modification of managed host configurations across different organisational and location boundaries.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Productos afectados
Red Hat · Red Hat Satellite 6Red Hat · Red Hat Satellite 6.16 for RHEL 8Red Hat · Red Hat Satellite 6.16 for RHEL 9Red Hat · Red Hat Satellite 6.17 for RHEL 9Red Hat · Red Hat Satellite 6.18 for RHEL 9Red Hat · Red Hat Satellite 6.19 for RHEL 9Referencias
https://access.redhat.com/errata/RHSA-2026:34365https://access.redhat.com/errata/RHSA-2026:34366https://access.redhat.com/errata/RHSA-2026:34367https://access.redhat.com/errata/RHSA-2026:34368https://access.redhat.com/security/cve/CVE-2026-5135https://bugzilla.redhat.com/show_bug.cgi?id=2452230