Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-5402 (GCVE-0-2016-5402)
Vulnerability from cvelistv5 – Published: 2018-10-31 13:00 – Updated: 2024-08-06 01:00
VLAI?
EPSS
Summary
A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.
Severity ?
8.8 (High)
CWE
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T01:00:59.994Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
},
{
"name": "94612",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94612"
},
{
"name": "RHSA-2016:2839",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "cfme",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-11-30T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-94",
"description": "CWE-94",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-11-01T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
},
{
"name": "94612",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94612"
},
{
"name": "RHSA-2016:2839",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-5402",
"datePublished": "2018-10-31T13:00:00",
"dateReserved": "2016-06-10T00:00:00",
"dateUpdated": "2024-08-06T01:00:59.994Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:cloudforms:4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF303B35-7EBD-44D3-90FB-2B6295FCEB86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:cloudforms_management_engine:5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1480D433-1DF4-4A5D-A098-E55515133DE8\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.\"}, {\"lang\": \"es\", \"value\": \"Se ha encontrado un error de inyecci\\u00f3n de c\\u00f3digo en la forma en la que se procesan los archivos de control de capacidad y utilizaci\\u00f3n importados. Un atacante autenticado remoto con acceso a la caracter\\u00edstica de capacidad y utilizaci\\u00f3n podr\\u00eda emplear este error para ejecutar c\\u00f3digo arbitrario como el usuario como el que se ejecuta CFME.\"}]",
"id": "CVE-2016-5402",
"lastModified": "2024-11-21T02:54:14.663",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:C/I:C/A:C\", \"baseScore\": 9.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2018-10-31T13:29:00.443",
"references": "[{\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2839.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94612\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2016-2839.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94612\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2016-5402\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-10-31T13:29:00.443\",\"lastModified\":\"2024-11-21T02:54:14.663\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.\"},{\"lang\":\"es\",\"value\":\"Se ha encontrado un error de inyecci\u00f3n de c\u00f3digo en la forma en la que se procesan los archivos de control de capacidad y utilizaci\u00f3n importados. Un atacante autenticado remoto con acceso a la caracter\u00edstica de capacidad y utilizaci\u00f3n podr\u00eda emplear este error para ejecutar c\u00f3digo arbitrario como el usuario como el que se ejecuta CFME.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:C/I:C/A:C\",\"baseScore\":9.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cloudforms:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF303B35-7EBD-44D3-90FB-2B6295FCEB86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cloudforms_management_engine:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1480D433-1DF4-4A5D-A098-E55515133DE8\"}]}]}],\"references\":[{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2839.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94612\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2016-2839.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94612\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]}]}}"
}
}
GSD-2016-5402
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-5402",
"description": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.",
"id": "GSD-2016-5402",
"references": [
"https://access.redhat.com/errata/RHSA-2016:2839"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-5402"
],
"details": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.",
"id": "GSD-2016-5402",
"modified": "2023-12-13T01:21:25.455913Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-5402",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "cfme",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "[UNKNOWN]"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-94",
"lang": "eng",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://rhn.redhat.com/errata/RHSA-2016-2839.html",
"refsource": "MISC",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
},
{
"name": "http://www.securityfocus.com/bid/94612",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/94612"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:cloudforms:4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:cloudforms_management_engine:5.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-5402"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
},
{
"name": "94612",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94612"
},
{
"name": "RHSA-2016:2839",
"refsource": "REDHAT",
"tags": [
"Vendor Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-02-12T23:23Z",
"publishedDate": "2018-10-31T13:29Z"
}
}
}
GHSA-6P9P-CWCR-3XJ6
Vulnerability from github – Published: 2022-05-13 01:38 – Updated: 2022-05-13 01:38
VLAI?
Details
A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.
Severity ?
8.8 (High)
{
"affected": [],
"aliases": [
"CVE-2016-5402"
],
"database_specific": {
"cwe_ids": [
"CWE-94"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-10-31T13:29:00Z",
"severity": "HIGH"
},
"details": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.",
"id": "GHSA-6p9p-cwcr-3xj6",
"modified": "2022-05-13T01:38:48Z",
"published": "2022-05-13T01:38:48Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5402"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2016:2839"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2016-5402"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1357559"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/94612"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
CNVD-2016-11916
Vulnerability from cnvd - Published: 2016-12-06
VLAI Severity ?
Title
Red Hat CloudForms Management Engine远程代码执行漏洞(CNVD-2016-11916)
Description
Red Hat CloudForms Management Engine(CFME)是美国红帽(Red Hat)公司的一个IaaS(基础设施即服务)云服务解决方案的管理引擎。
Red Hat CFME中存在远程代码执行漏洞。攻击者可利用该漏洞执行任意代码。
Severity
高
Patch Name
Red Hat CloudForms Management Engine远程代码执行漏洞(CNVD-2016-11916)的补丁
Patch Description
Red Hat CloudForms Management Engine(CFME)是美国红帽(Red Hat)公司的一个IaaS(基础设施即服务)云服务解决方案的管理引擎。
Red Hat CFME中存在远程代码执行漏洞。攻击者可利用该漏洞执行任意代码。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: https://rhn.redhat.com/errata/RHSA-2016-2839.html
Reference
http://www.securityfocus.com/bid/94612
Impacted products
| Name | Red Hat CloudForms Management Engine |
|---|
{
"bids": {
"bid": {
"bidNumber": "94612"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2016-5402"
}
},
"description": "Red Hat CloudForms Management Engine\uff08CFME\uff09\u662f\u7f8e\u56fd\u7ea2\u5e3d\uff08Red Hat\uff09\u516c\u53f8\u7684\u4e00\u4e2aIaaS\uff08\u57fa\u7840\u8bbe\u65bd\u5373\u670d\u52a1\uff09\u4e91\u670d\u52a1\u89e3\u51b3\u65b9\u6848\u7684\u7ba1\u7406\u5f15\u64ce\u3002\r\n\r\nRed Hat CFME\u4e2d\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002",
"discovererName": "Simon Lukasik",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://rhn.redhat.com/errata/RHSA-2016-2839.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2016-11916",
"openTime": "2016-12-06",
"patchDescription": "Red Hat CloudForms Management Engine\uff08CFME\uff09\u662f\u7f8e\u56fd\u7ea2\u5e3d\uff08Red Hat\uff09\u516c\u53f8\u7684\u4e00\u4e2aIaaS\uff08\u57fa\u7840\u8bbe\u65bd\u5373\u670d\u52a1\uff09\u4e91\u670d\u52a1\u89e3\u51b3\u65b9\u6848\u7684\u7ba1\u7406\u5f15\u64ce\u3002\r\n\r\nRed Hat CFME\u4e2d\u5b58\u5728\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Red Hat CloudForms Management Engine\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2016-11916\uff09\u7684\u8865\u4e01",
"products": {
"product": "Red Hat CloudForms Management Engine"
},
"referenceLink": "http://www.securityfocus.com/bid/94612",
"serverity": "\u9ad8",
"submitTime": "2016-12-02",
"title": "Red Hat CloudForms Management Engine\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2016-11916\uff09"
}
RHSA-2016:2839
Vulnerability from csaf_redhat - Published: 2016-11-30 19:51 - Updated: 2025-11-21 17:58Summary
Red Hat Security Advisory: CFME 5.6.3 security, bug fix, and enhancement update
Notes
Topic
An update is now available for Red Hat CloudForms 4.1.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.
Security Fix(es):
* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (CVE-2016-5402)
This issue was discovered by Simon Lukasik (Red Hat).
Additional Changes:
This update also fixes various bugs and adds several enhancements. Notable changes include:
Changes to the Automate component:
* This release of CloudForms allows provisioning of a virtual machine without specifying a host but validating a cluster. CloudForms now validates if either a host or cluster is selected when provisioning on VMware. (BZ#1378116)
Changes to the Providers component:
* In the previous version of CloudForms, when attempting to open a VNC console to an instance, CloudForms failed to connect because the instance did not exist for that tenant - it attempted to use the wrong tenant. This update specifies the tenant when opening a VNC console which has resolved the issue. CloudForms is now able to connect successfully without an error. (BZ#1370207)
Changes to the Provisioning component:
* In the previous version of CloudForms, cloning a VMware template failed when the target datacenter was nested below multiple folders. This was because if the datacenter was nested logically under various folders, users were unable to find the placement ID during an autoplacement VMware provision request. This fix always does a lookup of the folder path from the host datacenter instead of statically setting a possible wrong default value which has resolved the issue. (BZ#1361174)
Changes to the Replication component:
* In the previous version of CloudForms, subscription validation failed for replication subscriptions which were successfully saved. This was because the validation was done directly by the UI which did not have access to passwords of currently saved subscriptions. The validation would pass when the user enters the password when initially saving the subscription, but failed once the subscription needed to be retrieved from the database. This update has fixed the failing validation on saved replication subscriptions. (BZ#1378554)
Changes to the vulnerability component:
* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (BZ#1357559)
* In the previous version of CloudForms, when trying to save filters in Subnets/Routers/Security groups/Floating IPs/Network ports exception appeared. This was caused due to missing routes for network resources. This update adds missing routes for network resources and the issue has now been resolved. (BZ#1370573)
* In the previous version of CloudForms, My Filters in datastore was unclickable and no filters were shown under it. This update enabled My Filters in datastore and the issue is now resolved. (BZ#1379727)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat CloudForms 4.1.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.\n\nSecurity Fix(es):\n\n* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (CVE-2016-5402)\n\nThis issue was discovered by Simon Lukasik (Red Hat).\n\nAdditional Changes:\n\nThis update also fixes various bugs and adds several enhancements. Notable changes include:\n\nChanges to the Automate component:\n\n* This release of CloudForms allows provisioning of a virtual machine without specifying a host but validating a cluster. CloudForms now validates if either a host or cluster is selected when provisioning on VMware. (BZ#1378116)\n\nChanges to the Providers component:\n\n* In the previous version of CloudForms, when attempting to open a VNC console to an instance, CloudForms failed to connect because the instance did not exist for that tenant - it attempted to use the wrong tenant. This update specifies the tenant when opening a VNC console which has resolved the issue. CloudForms is now able to connect successfully without an error. (BZ#1370207)\n\nChanges to the Provisioning component:\n\n* In the previous version of CloudForms, cloning a VMware template failed when the target datacenter was nested below multiple folders. This was because if the datacenter was nested logically under various folders, users were unable to find the placement ID during an autoplacement VMware provision request. This fix always does a lookup of the folder path from the host datacenter instead of statically setting a possible wrong default value which has resolved the issue. (BZ#1361174)\n\nChanges to the Replication component:\n\n* In the previous version of CloudForms, subscription validation failed for replication subscriptions which were successfully saved. This was because the validation was done directly by the UI which did not have access to passwords of currently saved subscriptions. The validation would pass when the user enters the password when initially saving the subscription, but failed once the subscription needed to be retrieved from the database. This update has fixed the failing validation on saved replication subscriptions. (BZ#1378554)\n\nChanges to the vulnerability component:\n\n* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (BZ#1357559)\n\n* In the previous version of CloudForms, when trying to save filters in Subnets/Routers/Security groups/Floating IPs/Network ports exception appeared. This was caused due to missing routes for network resources. This update adds missing routes for network resources and the issue has now been resolved. (BZ#1370573)\n\n* In the previous version of CloudForms, My Filters in datastore was unclickable and no filters were shown under it. This update enabled My Filters in datastore and the issue is now resolved. (BZ#1379727)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2839",
"url": "https://access.redhat.com/errata/RHSA-2016:2839"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1346967",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346967"
},
{
"category": "external",
"summary": "1346969",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346969"
},
{
"category": "external",
"summary": "1347002",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347002"
},
{
"category": "external",
"summary": "1349413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349413"
},
{
"category": "external",
"summary": "1357559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1357559"
},
{
"category": "external",
"summary": "1358324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358324"
},
{
"category": "external",
"summary": "1361174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1361174"
},
{
"category": "external",
"summary": "1362632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362632"
},
{
"category": "external",
"summary": "1368162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368162"
},
{
"category": "external",
"summary": "1368172",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368172"
},
{
"category": "external",
"summary": "1370207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370207"
},
{
"category": "external",
"summary": "1370570",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370570"
},
{
"category": "external",
"summary": "1370573",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370573"
},
{
"category": "external",
"summary": "1370576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370576"
},
{
"category": "external",
"summary": "1372768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1372768"
},
{
"category": "external",
"summary": "1375206",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375206"
},
{
"category": "external",
"summary": "1376145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376145"
},
{
"category": "external",
"summary": "1376514",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376514"
},
{
"category": "external",
"summary": "1376516",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376516"
},
{
"category": "external",
"summary": "1376519",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376519"
},
{
"category": "external",
"summary": "1376521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376521"
},
{
"category": "external",
"summary": "1376525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376525"
},
{
"category": "external",
"summary": "1376526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376526"
},
{
"category": "external",
"summary": "1377417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377417"
},
{
"category": "external",
"summary": "1377418",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377418"
},
{
"category": "external",
"summary": "1378116",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378116"
},
{
"category": "external",
"summary": "1378173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378173"
},
{
"category": "external",
"summary": "1378554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378554"
},
{
"category": "external",
"summary": "1379692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379692"
},
{
"category": "external",
"summary": "1379693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379693"
},
{
"category": "external",
"summary": "1379694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379694"
},
{
"category": "external",
"summary": "1379697",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379697"
},
{
"category": "external",
"summary": "1379727",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379727"
},
{
"category": "external",
"summary": "1379728",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379728"
},
{
"category": "external",
"summary": "1380107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1380107"
},
{
"category": "external",
"summary": "1380170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1380170"
},
{
"category": "external",
"summary": "1381624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1381624"
},
{
"category": "external",
"summary": "1382072",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382072"
},
{
"category": "external",
"summary": "1382074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382074"
},
{
"category": "external",
"summary": "1382164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382164"
},
{
"category": "external",
"summary": "1382406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382406"
},
{
"category": "external",
"summary": "1382408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382408"
},
{
"category": "external",
"summary": "1382753",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382753"
},
{
"category": "external",
"summary": "1382819",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382819"
},
{
"category": "external",
"summary": "1382826",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382826"
},
{
"category": "external",
"summary": "1382834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382834"
},
{
"category": "external",
"summary": "1382835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382835"
},
{
"category": "external",
"summary": "1382836",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382836"
},
{
"category": "external",
"summary": "1382837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382837"
},
{
"category": "external",
"summary": "1382846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382846"
},
{
"category": "external",
"summary": "1382847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382847"
},
{
"category": "external",
"summary": "1383368",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383368"
},
{
"category": "external",
"summary": "1383466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383466"
},
{
"category": "external",
"summary": "1383469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383469"
},
{
"category": "external",
"summary": "1383470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383470"
},
{
"category": "external",
"summary": "1383497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383497"
},
{
"category": "external",
"summary": "1385156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1385156"
},
{
"category": "external",
"summary": "1385173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1385173"
},
{
"category": "external",
"summary": "1386792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386792"
},
{
"category": "external",
"summary": "1386793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386793"
},
{
"category": "external",
"summary": "1386794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386794"
},
{
"category": "external",
"summary": "1386797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386797"
},
{
"category": "external",
"summary": "1388984",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388984"
},
{
"category": "external",
"summary": "1389025",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389025"
},
{
"category": "external",
"summary": "1389760",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389760"
},
{
"category": "external",
"summary": "1389790",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389790"
},
{
"category": "external",
"summary": "1390697",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390697"
},
{
"category": "external",
"summary": "1390698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390698"
},
{
"category": "external",
"summary": "1390724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390724"
},
{
"category": "external",
"summary": "1391710",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391710"
},
{
"category": "external",
"summary": "1391721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391721"
},
{
"category": "external",
"summary": "1391764",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391764"
},
{
"category": "external",
"summary": "1391980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391980"
},
{
"category": "external",
"summary": "1392561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1392561"
},
{
"category": "external",
"summary": "1392964",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1392964"
},
{
"category": "external",
"summary": "1393061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393061"
},
{
"category": "external",
"summary": "1395305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395305"
},
{
"category": "external",
"summary": "1396665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1396665"
},
{
"category": "external",
"summary": "1397093",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397093"
},
{
"category": "external",
"summary": "1397095",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397095"
},
{
"category": "external",
"summary": "1397516",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397516"
},
{
"category": "external",
"summary": "1399285",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399285"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2839.json"
}
],
"title": "Red Hat Security Advisory: CFME 5.6.3 security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-11-21T17:58:45+00:00",
"generator": {
"date": "2025-11-21T17:58:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2016:2839",
"initial_release_date": "2016-11-30T19:51:49+00:00",
"revision_history": [
{
"date": "2016-11-30T19:51:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-30T19:51:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:58:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CloudForms Management Engine 5.6",
"product": {
"name": "CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cloudforms_managementengine:5.6::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat CloudForms"
},
{
"branches": [
{
"category": "product_version",
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-bmc-watchdog@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-ipmidetectd@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-devel@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-ipmiseld@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-debuginfo@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-debuginfo@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-gemset@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance-debuginfo@5.6.3.3-1.el7cf?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "freeipmi-0:1.5.1-2.el7cf.src",
"product": {
"name": "freeipmi-0:1.5.1-2.el7cf.src",
"product_id": "freeipmi-0:1.5.1-2.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi@1.5.1-2.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme@5.6.3.3-1.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-gemset@5.6.3.3-1.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance@5.6.3.3-1.el7cf?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-0:1.5.1-2.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src"
},
"product_reference": "freeipmi-0:1.5.1-2.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Simon Lukasik"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-5402",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2016-07-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1357559"
}
],
"notes": [
{
"category": "description",
"text": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cfme: RCE via Capacity \u0026 Utilization feature",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-5402"
},
{
"category": "external",
"summary": "RHBZ#1357559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1357559"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-5402",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5402"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5402",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5402"
}
],
"release_date": "2016-11-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-30T19:51:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2839"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cfme: RCE via Capacity \u0026 Utilization feature"
}
]
}
RHSA-2016_2839
Vulnerability from csaf_redhat - Published: 2016-11-30 19:51 - Updated: 2024-11-22 10:27Summary
Red Hat Security Advisory: CFME 5.6.3 security, bug fix, and enhancement update
Notes
Topic
An update is now available for Red Hat CloudForms 4.1.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.
Security Fix(es):
* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (CVE-2016-5402)
This issue was discovered by Simon Lukasik (Red Hat).
Additional Changes:
This update also fixes various bugs and adds several enhancements. Notable changes include:
Changes to the Automate component:
* This release of CloudForms allows provisioning of a virtual machine without specifying a host but validating a cluster. CloudForms now validates if either a host or cluster is selected when provisioning on VMware. (BZ#1378116)
Changes to the Providers component:
* In the previous version of CloudForms, when attempting to open a VNC console to an instance, CloudForms failed to connect because the instance did not exist for that tenant - it attempted to use the wrong tenant. This update specifies the tenant when opening a VNC console which has resolved the issue. CloudForms is now able to connect successfully without an error. (BZ#1370207)
Changes to the Provisioning component:
* In the previous version of CloudForms, cloning a VMware template failed when the target datacenter was nested below multiple folders. This was because if the datacenter was nested logically under various folders, users were unable to find the placement ID during an autoplacement VMware provision request. This fix always does a lookup of the folder path from the host datacenter instead of statically setting a possible wrong default value which has resolved the issue. (BZ#1361174)
Changes to the Replication component:
* In the previous version of CloudForms, subscription validation failed for replication subscriptions which were successfully saved. This was because the validation was done directly by the UI which did not have access to passwords of currently saved subscriptions. The validation would pass when the user enters the password when initially saving the subscription, but failed once the subscription needed to be retrieved from the database. This update has fixed the failing validation on saved replication subscriptions. (BZ#1378554)
Changes to the vulnerability component:
* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (BZ#1357559)
* In the previous version of CloudForms, when trying to save filters in Subnets/Routers/Security groups/Floating IPs/Network ports exception appeared. This was caused due to missing routes for network resources. This update adds missing routes for network resources and the issue has now been resolved. (BZ#1370573)
* In the previous version of CloudForms, My Filters in datastore was unclickable and no filters were shown under it. This update enabled My Filters in datastore and the issue is now resolved. (BZ#1379727)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat CloudForms 4.1.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.\n\nSecurity Fix(es):\n\n* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (CVE-2016-5402)\n\nThis issue was discovered by Simon Lukasik (Red Hat).\n\nAdditional Changes:\n\nThis update also fixes various bugs and adds several enhancements. Notable changes include:\n\nChanges to the Automate component:\n\n* This release of CloudForms allows provisioning of a virtual machine without specifying a host but validating a cluster. CloudForms now validates if either a host or cluster is selected when provisioning on VMware. (BZ#1378116)\n\nChanges to the Providers component:\n\n* In the previous version of CloudForms, when attempting to open a VNC console to an instance, CloudForms failed to connect because the instance did not exist for that tenant - it attempted to use the wrong tenant. This update specifies the tenant when opening a VNC console which has resolved the issue. CloudForms is now able to connect successfully without an error. (BZ#1370207)\n\nChanges to the Provisioning component:\n\n* In the previous version of CloudForms, cloning a VMware template failed when the target datacenter was nested below multiple folders. This was because if the datacenter was nested logically under various folders, users were unable to find the placement ID during an autoplacement VMware provision request. This fix always does a lookup of the folder path from the host datacenter instead of statically setting a possible wrong default value which has resolved the issue. (BZ#1361174)\n\nChanges to the Replication component:\n\n* In the previous version of CloudForms, subscription validation failed for replication subscriptions which were successfully saved. This was because the validation was done directly by the UI which did not have access to passwords of currently saved subscriptions. The validation would pass when the user enters the password when initially saving the subscription, but failed once the subscription needed to be retrieved from the database. This update has fixed the failing validation on saved replication subscriptions. (BZ#1378554)\n\nChanges to the vulnerability component:\n\n* A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as. (BZ#1357559)\n\n* In the previous version of CloudForms, when trying to save filters in Subnets/Routers/Security groups/Floating IPs/Network ports exception appeared. This was caused due to missing routes for network resources. This update adds missing routes for network resources and the issue has now been resolved. (BZ#1370573)\n\n* In the previous version of CloudForms, My Filters in datastore was unclickable and no filters were shown under it. This update enabled My Filters in datastore and the issue is now resolved. (BZ#1379727)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2839",
"url": "https://access.redhat.com/errata/RHSA-2016:2839"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1346967",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346967"
},
{
"category": "external",
"summary": "1346969",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1346969"
},
{
"category": "external",
"summary": "1347002",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1347002"
},
{
"category": "external",
"summary": "1349413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1349413"
},
{
"category": "external",
"summary": "1357559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1357559"
},
{
"category": "external",
"summary": "1358324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358324"
},
{
"category": "external",
"summary": "1361174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1361174"
},
{
"category": "external",
"summary": "1362632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1362632"
},
{
"category": "external",
"summary": "1368162",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368162"
},
{
"category": "external",
"summary": "1368172",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1368172"
},
{
"category": "external",
"summary": "1370207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370207"
},
{
"category": "external",
"summary": "1370570",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370570"
},
{
"category": "external",
"summary": "1370573",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370573"
},
{
"category": "external",
"summary": "1370576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1370576"
},
{
"category": "external",
"summary": "1372768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1372768"
},
{
"category": "external",
"summary": "1375206",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1375206"
},
{
"category": "external",
"summary": "1376145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376145"
},
{
"category": "external",
"summary": "1376514",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376514"
},
{
"category": "external",
"summary": "1376516",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376516"
},
{
"category": "external",
"summary": "1376519",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376519"
},
{
"category": "external",
"summary": "1376521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376521"
},
{
"category": "external",
"summary": "1376525",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376525"
},
{
"category": "external",
"summary": "1376526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1376526"
},
{
"category": "external",
"summary": "1377417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377417"
},
{
"category": "external",
"summary": "1377418",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1377418"
},
{
"category": "external",
"summary": "1378116",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378116"
},
{
"category": "external",
"summary": "1378173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378173"
},
{
"category": "external",
"summary": "1378554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1378554"
},
{
"category": "external",
"summary": "1379692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379692"
},
{
"category": "external",
"summary": "1379693",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379693"
},
{
"category": "external",
"summary": "1379694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379694"
},
{
"category": "external",
"summary": "1379697",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379697"
},
{
"category": "external",
"summary": "1379727",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379727"
},
{
"category": "external",
"summary": "1379728",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1379728"
},
{
"category": "external",
"summary": "1380107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1380107"
},
{
"category": "external",
"summary": "1380170",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1380170"
},
{
"category": "external",
"summary": "1381624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1381624"
},
{
"category": "external",
"summary": "1382072",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382072"
},
{
"category": "external",
"summary": "1382074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382074"
},
{
"category": "external",
"summary": "1382164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382164"
},
{
"category": "external",
"summary": "1382406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382406"
},
{
"category": "external",
"summary": "1382408",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382408"
},
{
"category": "external",
"summary": "1382753",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382753"
},
{
"category": "external",
"summary": "1382819",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382819"
},
{
"category": "external",
"summary": "1382826",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382826"
},
{
"category": "external",
"summary": "1382834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382834"
},
{
"category": "external",
"summary": "1382835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382835"
},
{
"category": "external",
"summary": "1382836",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382836"
},
{
"category": "external",
"summary": "1382837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382837"
},
{
"category": "external",
"summary": "1382846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382846"
},
{
"category": "external",
"summary": "1382847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1382847"
},
{
"category": "external",
"summary": "1383368",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383368"
},
{
"category": "external",
"summary": "1383466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383466"
},
{
"category": "external",
"summary": "1383469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383469"
},
{
"category": "external",
"summary": "1383470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383470"
},
{
"category": "external",
"summary": "1383497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1383497"
},
{
"category": "external",
"summary": "1385156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1385156"
},
{
"category": "external",
"summary": "1385173",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1385173"
},
{
"category": "external",
"summary": "1386792",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386792"
},
{
"category": "external",
"summary": "1386793",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386793"
},
{
"category": "external",
"summary": "1386794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386794"
},
{
"category": "external",
"summary": "1386797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1386797"
},
{
"category": "external",
"summary": "1388984",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388984"
},
{
"category": "external",
"summary": "1389025",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389025"
},
{
"category": "external",
"summary": "1389760",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389760"
},
{
"category": "external",
"summary": "1389790",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1389790"
},
{
"category": "external",
"summary": "1390697",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390697"
},
{
"category": "external",
"summary": "1390698",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390698"
},
{
"category": "external",
"summary": "1390724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1390724"
},
{
"category": "external",
"summary": "1391710",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391710"
},
{
"category": "external",
"summary": "1391721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391721"
},
{
"category": "external",
"summary": "1391764",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391764"
},
{
"category": "external",
"summary": "1391980",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1391980"
},
{
"category": "external",
"summary": "1392561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1392561"
},
{
"category": "external",
"summary": "1392964",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1392964"
},
{
"category": "external",
"summary": "1393061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1393061"
},
{
"category": "external",
"summary": "1395305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1395305"
},
{
"category": "external",
"summary": "1396665",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1396665"
},
{
"category": "external",
"summary": "1397093",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397093"
},
{
"category": "external",
"summary": "1397095",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397095"
},
{
"category": "external",
"summary": "1397516",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397516"
},
{
"category": "external",
"summary": "1399285",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399285"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2839.json"
}
],
"title": "Red Hat Security Advisory: CFME 5.6.3 security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-22T10:27:35+00:00",
"generator": {
"date": "2024-11-22T10:27:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2839",
"initial_release_date": "2016-11-30T19:51:49+00:00",
"revision_history": [
{
"date": "2016-11-30T19:51:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-11-30T19:51:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:27:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "CloudForms Management Engine 5.6",
"product": {
"name": "CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cloudforms_managementengine:5.6::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat CloudForms"
},
{
"branches": [
{
"category": "product_version",
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-bmc-watchdog@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-ipmidetectd@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-devel@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-ipmiseld@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi-debuginfo@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product": {
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product_id": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi@1.5.1-2.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-debuginfo@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-gemset@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance@5.6.3.3-1.el7cf?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product": {
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_id": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance-debuginfo@5.6.3.3-1.el7cf?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "freeipmi-0:1.5.1-2.el7cf.src",
"product": {
"name": "freeipmi-0:1.5.1-2.el7cf.src",
"product_id": "freeipmi-0:1.5.1-2.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/freeipmi@1.5.1-2.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme@5.6.3.3-1.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-gemset@5.6.3.3-1.el7cf?arch=src"
}
}
},
{
"category": "product_version",
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product_id": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cfme-appliance@5.6.3.3-1.el7cf?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-appliance-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src"
},
"product_reference": "cfme-gemset-0:5.6.3.3-1.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64"
},
"product_reference": "cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-0:1.5.1-2.el7cf.src as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src"
},
"product_reference": "freeipmi-0:1.5.1-2.el7cf.src",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64 as a component of CloudForms Management Engine 5.6",
"product_id": "7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
},
"product_reference": "freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64",
"relates_to_product_reference": "7Server-RH7-CFME-5.6"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Simon Lukasik"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2016-5402",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2016-07-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1357559"
}
],
"notes": [
{
"category": "description",
"text": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cfme: RCE via Capacity \u0026 Utilization feature",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-5402"
},
{
"category": "external",
"summary": "RHBZ#1357559",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1357559"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-5402",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-5402"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-5402",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-5402"
}
],
"release_date": "2016-11-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-11-30T19:51:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2839"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 8.5,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-appliance-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-appliance-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-debuginfo-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.src",
"7Server-RH7-CFME-5.6:cfme-gemset-0:5.6.3.3-1.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.src",
"7Server-RH7-CFME-5.6:freeipmi-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-bmc-watchdog-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-debuginfo-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-devel-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmidetectd-0:1.5.1-2.el7cf.x86_64",
"7Server-RH7-CFME-5.6:freeipmi-ipmiseld-0:1.5.1-2.el7cf.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cfme: RCE via Capacity \u0026 Utilization feature"
}
]
}
FKIE_CVE-2016-5402
Vulnerability from fkie_nvd - Published: 2018-10-31 13:29 - Updated: 2024-11-21 02:54
Severity ?
8.8 (High) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://rhn.redhat.com/errata/RHSA-2016-2839.html | Vendor Advisory | |
| secalert@redhat.com | http://www.securityfocus.com/bid/94612 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402 | Issue Tracking | |
| af854a3a-2127-422b-91ae-364da2661108 | http://rhn.redhat.com/errata/RHSA-2016-2839.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/94612 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402 | Issue Tracking |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| redhat | cloudforms | 4.1 | |
| redhat | cloudforms_management_engine | 5.6 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:cloudforms:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BF303B35-7EBD-44D3-90FB-2B6295FCEB86",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:cloudforms_management_engine:5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "1480D433-1DF4-4A5D-A098-E55515133DE8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as."
},
{
"lang": "es",
"value": "Se ha encontrado un error de inyecci\u00f3n de c\u00f3digo en la forma en la que se procesan los archivos de control de capacidad y utilizaci\u00f3n importados. Un atacante autenticado remoto con acceso a la caracter\u00edstica de capacidad y utilizaci\u00f3n podr\u00eda emplear este error para ejecutar c\u00f3digo arbitrario como el usuario como el que se ejecuta CFME."
}
],
"id": "CVE-2016-5402",
"lastModified": "2024-11-21T02:54:14.663",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-10-31T13:29:00.443",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94612"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://rhn.redhat.com/errata/RHSA-2016-2839.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94612"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5402"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…