Vulnerabilities > CVE-2020-10783 - Incorrect Authorization vulnerability in Redhat Cloudforms 4.7/5.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Red Hat CloudForms 4.7 and 5 is affected by a role-based privilege escalation flaw. An attacker with EVM-Operator group can perform actions restricted only to EVM-Super-administrator group, leads to, exporting or importing administrator files.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |