Vulnerabilities > CVE-2020-10783 - Unspecified vulnerability in Redhat Cloudforms 4.7/5.0.0

047910
CVSS 8.3 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
LOW
network
low complexity
redhat

Summary

Red Hat CloudForms 4.7 and 5 is affected by a role-based privilege escalation flaw. An attacker with EVM-Operator group can perform actions restricted only to EVM-Super-administrator group, leads to, exporting or importing administrator files.

Vulnerable Configurations

Part Description Count
Application
Redhat
2