CVE-2017-2662 in Katello Plugininfo

Zusammenfassung

von MITRE

A flaw was found in Foreman's katello plugin version 3.4.5. After setting a new role to allow restricted access on a repository with a filter (filter set on the Product Name), the filter is not respected when the actions are done via hammer using the repository id.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Red Hat, Inc.

Reservieren

30.11.2016

Veröffentlichung

22.08.2018

Moderieren

akzeptiert

Eintrag

VDB-123132

CPE

bereit

CWE

CWE-284 (bestätigt)

CVSS

4.3 (NVD)

EPSS

0.00087

KEV

nein

Aktivitäten

very low

Sektor

Industry, Transportation, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2662
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2662
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2662/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!