Vulnerabilities > CVE-2014-0180 - Resource Management Errors vulnerability in Redhat Cloudforms 3.0 Management Engine

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
redhat
CWE-399
NVD
Published: 2014-07-07
Updated: 2023-02-13

Summary

The wait_for_task function in app/controllers/application_controller.rb in Red Hat CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via unspecified vectors.

Vulnerable Configurations

Part Description Count
Application
Redhat
8

Common Weakness Enumeration (CWE)

Redhat

advisories
rhsa
idRHSA-2014:0816
rpms
  • cfme-0:5.2.4.2-1.el6cf
  • cfme-appliance-0:5.2.4.2-1.el6cf
  • cfme-debuginfo-0:5.2.4.2-1.el6cf
  • cfme-lib-0:5.2.4.2-1.el6cf
  • mingw32-cfme-host-0:5.2.4.2-1.el6cf
  • ruby193-rubygem-actionpack-1:3.2.13-8.el6cf

References