CVE-2017-7535 in Foremaninfo

Zusammenfassung

von MITRE

foreman before version 1.16.0 is vulnerable to a stored XSS in organizations/locations assignment to hosts. Exploiting this requires a user to actively assign hosts to an organization that contains html in its name which is visible to the user prior to taking action.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

05.04.2017

Veröffentlichung

26.07.2018

Moderieren

akzeptiert

Eintrag

VDB-122207

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

6.1 (NVD)

EPSS

0.00510

KEV

nein

Aktivitäten

very low

Sektor

Hospital, Insurance, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7535
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7535
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7535/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!