Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat cfme-gemset vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2019-10159
cfme-gemset versions 5.10.4.3 and below, 5.9.9.3 and below are vulnerable to a data leak, due to an improper authorization in the migration log controller. An attacker with access to an unprivileged user can access all VM migration logs available.
Redhat Cfme-gemset
Redhat Cloudforms 4.7
6.5
CVSSv3
CVE-2017-2653
A number of unused delete routes are present in CloudForms prior to 5.7.2.1 which can be accessed via GET requests instead of just POST requests. This could allow an malicious user to bypass the protect_from_forgery XSRF protection causing the routes to be used. This attack would...
Redhat Cloudforms Management Engine
Redhat Cloudforms 4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started