CVE-2019-3893 - Information Leak / Disclosure vulnerability in Redhat and Theforeman products

Publication

2019-04-09

Last modification

2019-04-15

Summary

In Foreman it was discovered that the delete compute resource operation, when executed from the Foreman API, leads to the disclosure of the plaintext password or token for the affected compute resource. A malicious user with the "delete_compute_resource" permission can use this flaw to take control over compute resources managed by foreman. Versions before 1.20.3, 1.21.1, 1.22.0 are vulnerable.

Description

Foreman is prone to an information disclosure vulnerability. Successful exploits may allow an attacker to gain access to sensitive information that may aid in further attacks. Versions prior to Foreman 1.20.3, 1.21.1, 1.22.0 are vulnerable

Solution

Updates are available. Please see the references or vendor advisory for more information.

Exploit

Currently, we are not aware of any working exploits.

Classification

CWE-200 - Information Leak / Disclosure

Risk level (CVSS AV:N/AC:L/Au:S/C:P/I:N/A:N)

Medium

4.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Theforeman Foreman  1.20.2 , 1.20.1 , 1.21.0 , 1.20.0
Redhat Satellite  6.0