Information disclosure in Foreman



| Updated: 2020-08-08
Risk Low
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2016-7077
CWE-ID CWE-200
Exploitation vector Network
Public exploit N/A
Vulnerable software
 Foreman
Web applications / Remote management & hosting panels

Vendor Foreman

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Information disclosure

EUVDB-ID: #VU36709

Risk: Low

CVSSv4.0: 1.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2016-7077

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote authenticated user to gain access to sensitive information.

foreman before 1.14.0 is vulnerable to an information leak. It was found that Foreman form helper does not authorize options for associated objects. Unauthorized user can see names of such objects if their count is less than 6.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Foreman: 1.1 - 1.13.4

CPE2.3 External links

https://www.securityfocus.com/bid/94230
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7077
https://projects.theforeman.org/issues/16971
https://theforeman.org/security.html#2016-7077


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###