cnvd - cnvd-2017-02467

cnvd-2017-02467

Vulnerability from cnvd

Title: Foreman信息泄露漏洞（CNVD-2017-02467）

Description:

Foreman是一套用于物理和虚拟服务器中的生命周期管理工具。该工具提供服务开通、配置管理以及报告状态等功能。

Foreman存在信息泄露漏洞。允许攻击者利用漏洞获取访问敏感信息的权限，导致进一步攻击。

Severity: 中

Patch Name: Foreman信息泄露漏洞（CNVD-2017-02467）的补丁

Patch Description:

Foreman是一套用于物理和虚拟服务器中的生命周期管理工具。该工具提供服务开通、配置管理以及报告状态等功能。

Foreman存在信息泄露漏洞。允许攻击者利用漏洞获取访问敏感信息的权限，导致进一步攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： http://projects.theforeman.org/issues/16982

Reference: http://www.securityfocus.com/bid/96385

Impacted products

Name
Foreman Foreman <=1.12.2

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "96385"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-7078",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7078"
    }
  },
  "description": "Foreman\u662f\u4e00\u5957\u7528\u4e8e\u7269\u7406\u548c\u865a\u62df\u670d\u52a1\u5668\u4e2d\u7684\u751f\u547d\u5468\u671f\u7ba1\u7406\u5de5\u5177\u3002\u8be5\u5de5\u5177\u63d0\u4f9b\u670d\u52a1\u5f00\u901a\u3001\u914d\u7f6e\u7ba1\u7406\u4ee5\u53ca\u62a5\u544a\u72b6\u6001\u7b49\u529f\u80fd\u3002\r\n\r\nForeman\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u83b7\u53d6\u8bbf\u95ee\u654f\u611f\u4fe1\u606f\u7684\u6743\u9650\uff0c\u5bfc\u81f4\u8fdb\u4e00\u6b65\u653b\u51fb\u3002",
  "discovererName": "Daniel Lobato Garcia",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://projects.theforeman.org/issues/16982",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-02467",
  "openTime": "2017-03-07",
  "patchDescription": "Foreman\u662f\u4e00\u5957\u7528\u4e8e\u7269\u7406\u548c\u865a\u62df\u670d\u52a1\u5668\u4e2d\u7684\u751f\u547d\u5468\u671f\u7ba1\u7406\u5de5\u5177\u3002\u8be5\u5de5\u5177\u63d0\u4f9b\u670d\u52a1\u5f00\u901a\u3001\u914d\u7f6e\u7ba1\u7406\u4ee5\u53ca\u62a5\u544a\u72b6\u6001\u7b49\u529f\u80fd\u3002\r\n\r\nForeman\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u83b7\u53d6\u8bbf\u95ee\u654f\u611f\u4fe1\u606f\u7684\u6743\u9650\uff0c\u5bfc\u81f4\u8fdb\u4e00\u6b65\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Foreman\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-02467\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Foreman Foreman \u003c=1.12.2"
  },
  "referenceLink": "http://www.securityfocus.com/bid/96385",
  "serverity": "\u4e2d",
  "submitTime": "2017-02-24",
  "title": "Foreman\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2017-02467\uff09"
}

CVE-2016-7078 (GCVE-0-2016-7078)

Vulnerability from cvelistv5

Published

2018-09-10 15:00

Modified

2024-08-06 01:50

Severity ?

4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWE

CWE-285

Summary

foreman before version 1.15.0 is vulnerable to an information leak through organizations and locations feature. When a user is assigned _no_ organizations/locations, they are able to view all resources instead of none (mirroring an administrator's view). The user's actions are still limited by their assigned permissions, e.g. to control viewing, editing and deletion.

References

▼	URL	Tags
	https://github.com/theforeman/foreman/commit/5f606e11cf39719bf62f8b1f3396861b32387905	x_refsource_CONFIRM
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7078	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/96385	vdb-entry, x_refsource_BID
	https://theforeman.org/security.html#2016-7078	x_refsource_CONFIRM
	https://projects.theforeman.org/issues/16982	x_refsource_CONFIRM
	https://seclists.org/oss-sec/2017/q1/470	mailing-list, x_refsource_MLIST

Impacted products

	Vendor	Product	Version
	Foreman	foreman	Version: 1.15.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T01:50:47.463Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/theforeman/foreman/commit/5f606e11cf39719bf62f8b1f3396861b32387905"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7078"
          },
          {
            "name": "96385",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/96385"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://theforeman.org/security.html#2016-7078"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://projects.theforeman.org/issues/16982"
          },
          {
            "name": "[oss-security] 20170222 CVE-2016-7078: Foreman organization/location authorization vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://seclists.org/oss-sec/2017/q1/470"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "foreman",
          "vendor": "Foreman",
          "versions": [
            {
              "status": "affected",
              "version": "1.15.0"
            }
          ]
        }
      ],
      "datePublic": "2016-10-18T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "foreman before version 1.15.0 is vulnerable to an information leak through organizations and locations feature. When a user is assigned _no_ organizations/locations, they are able to view all resources instead of none (mirroring an administrator\u0027s view). The user\u0027s actions are still limited by their assigned permissions, e.g. to control viewing, editing and deletion."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-285",
              "description": "CWE-285",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-09-11T09:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/theforeman/foreman/commit/5f606e11cf39719bf62f8b1f3396861b32387905"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7078"
        },
        {
          "name": "96385",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/96385"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://theforeman.org/security.html#2016-7078"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://projects.theforeman.org/issues/16982"
        },
        {
          "name": "[oss-security] 20170222 CVE-2016-7078: Foreman organization/location authorization vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://seclists.org/oss-sec/2017/q1/470"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2016-7078",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "foreman",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.15.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Foreman"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "foreman before version 1.15.0 is vulnerable to an information leak through organizations and locations feature. When a user is assigned _no_ organizations/locations, they are able to view all resources instead of none (mirroring an administrator\u0027s view). The user\u0027s actions are still limited by their assigned permissions, e.g. to control viewing, editing and deletion."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "4.3/CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.0"
              }
            ],
            [
              {
                "vectorString": "3.5/AV:N/AC:M/Au:S/C:P/I:N/A:N",
                "version": "2.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-285"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/theforeman/foreman/commit/5f606e11cf39719bf62f8b1f3396861b32387905",
              "refsource": "CONFIRM",
              "url": "https://github.com/theforeman/foreman/commit/5f606e11cf39719bf62f8b1f3396861b32387905"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7078",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7078"
            },
            {
              "name": "96385",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/96385"
            },
            {
              "name": "https://theforeman.org/security.html#2016-7078",
              "refsource": "CONFIRM",
              "url": "https://theforeman.org/security.html#2016-7078"
            },
            {
              "name": "https://projects.theforeman.org/issues/16982",
              "refsource": "CONFIRM",
              "url": "https://projects.theforeman.org/issues/16982"
            },
            {
              "name": "[oss-security] 20170222 CVE-2016-7078: Foreman organization/location authorization vulnerability",
              "refsource": "MLIST",
              "url": "https://seclists.org/oss-sec/2017/q1/470"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2016-7078",
    "datePublished": "2018-09-10T15:00:00",
    "dateReserved": "2016-08-23T00:00:00",
    "dateUpdated": "2024-08-06T01:50:47.463Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted