Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Cloudforms_3\.0_management_engine
(Redhat)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2014-03-18 | CVE-2014-0057 | The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors. | Cloudforms, Cloudforms_3\.0_management_engine | N/A | ||
| 2014-05-14 | CVE-2014-0078 | The CatalogController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to delete arbitrary catalogs via vectors involving guessing the catalog ID. | Cloudforms_3\.0_management_engine | N/A | ||
| 2014-05-14 | CVE-2014-0137 | SQL injection vulnerability in the saved_report_delete action in the ReportController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, related to MiqReportResult.exists. | Cloudforms_3\.0_management_engine | N/A |