The Red Hat CloudForms Management Engine 5.1 allow remote administrators to execute arbitrary Ruby code via unspecified vectors.
References
Link | Resource |
---|---|
http://rhn.redhat.com/errata/RHSA-2013-1157.html | Vendor Advisory |
Configurations
History
13 Feb 2023, 04:45
Type | Values Removed | Values Added |
---|---|---|
Summary | The Red Hat CloudForms Management Engine 5.1 allow remote administrators to execute arbitrary Ruby code via unspecified vectors. | |
References |
|
02 Feb 2023, 20:15
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2013-4172 CFME 2.0 web interface: Ruby code injection | |
References |
|
Information
Published : 2013-08-23 16:55
Updated : 2023-12-10 11:16
NVD link : CVE-2013-4172
Mitre link : CVE-2013-4172
CVE.ORG link : CVE-2013-4172
JSON object : View
Products Affected
redhat
- cloudforms_management_engine
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')