Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redhat cloudforms 1.1 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-5604
The ldap_fluff gem for Ruby, as used in Red Hat CloudForms 1.1, when using Active Directory for authentication, allows remote malicious users to bypass authentication via unspecified vectors.
Redhat Cloudforms 1.1
187
VMScore
CVE-2012-5605
Grinder in Red Hat CloudForms prior to 1.1 uses world-writable permissions for /var/lib/pulp/cache/grinder/, which allows local users to modify grinder cache files.
Redhat Cloudforms
294
VMScore
CVE-2012-3538
Pulp in Red Hat CloudForms prior to 1.1 logs administrative passwords in a world-readable file, which allows local users to read pulp administrative passwords by reading production.log.
Redhat Cloudforms
187
VMScore
CVE-2012-4574
Pulp in Red Hat CloudForms prior to 1.1 uses world-readable permissions for pulp.conf, which allows local users to read the administrative password by reading this file.
Redhat Cloudforms
490
VMScore
CVE-2012-5603
proxies_controller.rb in Katello in Red Hat CloudForms prior to 1.1 does not properly check permissions, which allows remote authenticated users to read consumer certificates or change arbitrary users' settings via unspecified vectors related to the "consumer UUID"...
Redhat Cloudforms
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started