Vulnerabilidades en Foreman Project

3 resultados

CVE-2018-1097—A flaw was found in foreman before 1.16.1. The issue allows users with limited permissions for powering oVirt/RHV hosts on and off to discovEPSS 1.8%CVE-2018-1096—An input sanitization flaw was found in the id field in the dashboard controller of Foreman before 1.16.1. A user could use this flaw to perEPSS 1.4%CVE-2017-15100—An attacker submitting facts to the Foreman server containing HTML can cause a stored XSS on certain pages: (1) Facts page, when clicking onEPSS 1.1%