Vulnerabilities > Theforeman

DATE CVE VULNERABILITY TITLE RISK
2024-08-12 CVE-2024-7700 Command Injection vulnerability in Theforeman Foreman
A command injection flaw was found in the "Host Init Config" template in the Foreman application via the "Install Packages" field on the "Register Host" page.
local
low complexity
theforeman CWE-77
6.5
2023-10-03 CVE-2023-4886 A sensitive information exposure vulnerability was found in foreman.
local
low complexity
theforeman redhat
4.4
2023-09-22 CVE-2022-3874 OS Command Injection vulnerability in multiple products
A command injection flaw was found in foreman.
network
low complexity
redhat theforeman CWE-78
critical
9.1
2023-09-20 CVE-2023-0118 OS Command Injection vulnerability in multiple products
An arbitrary code execution flaw was found in Foreman.
network
low complexity
theforeman redhat CWE-78
critical
9.1
2023-09-20 CVE-2023-0462 Code Injection vulnerability in multiple products
An arbitrary code execution flaw was found in Foreman.
network
low complexity
theforeman redhat CWE-94
critical
9.1
2022-08-26 CVE-2021-20260 Insufficiently Protected Credentials vulnerability in Theforeman Foreman
A flaw was found in the Foreman project.
local
low complexity
theforeman CWE-522
7.8
2022-08-22 CVE-2021-3590 Cleartext Transmission of Sensitive Information vulnerability in multiple products
A flaw was found in Foreman project.
network
low complexity
theforeman redhat CWE-319
8.8
2022-08-16 CVE-2020-10710 Insufficiently Protected Credentials vulnerability in Theforeman Foreman
A flaw was found where the Plaintext Candlepin password is disclosed while updating Red Hat Satellite through the satellite-installer.
local
low complexity
theforeman CWE-522
4.4
2022-03-30 CVE-2021-3456 Incorrect Authorization vulnerability in Theforeman Smart Proxy Salt
An improper authorization handling flaw was found in Foreman.
local
low complexity
theforeman CWE-863
7.1
2022-03-25 CVE-2021-20290 Incorrect Authorization vulnerability in Theforeman Openscap
An improper authorization handling flaw was found in Foreman.
local
low complexity
theforeman CWE-863
6.1