{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-10-02T00:00:00", "descriptions": [{"lang": "en", "value": "Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-10-06T13:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "RHSA-2014:1317", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2014-1317.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1077359"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:05:38.829Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2014:1317", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2014-1317.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1077359"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2014-0140", "datePublished": "2014-10-06T14:00:00", "dateReserved": "2013-12-03T00:00:00", "dateUpdated": "2024-08-06T09:05:38.829Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:cloudforms_3.0.1_management_engine:5.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "3BB5C65F-8F07-4388-A0D3-0034AEE44BBF", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:cloudforms_3.0.2_management_engine:5.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "ADA990D9-FDD7-41EF-BE87-4FC2FC6FA8EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:cloudforms_3.0.3_management_engine:5.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "1B9226B5-643C-4879-94DC-683DDBE32C2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:cloudforms_3.0.4_management_engine:5.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "77A8BE01-8B76-4A5E-A522-8E9C9E8CF2B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:cloudforms_3.0.5_management_engine:*:*:*:*:*:*:*:*", "matchCriteriaId": "FE37EE18-33A0-4D8C-B8BC-6CED2363822E", "versionEndIncluding": "5.2.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:cloudforms_3.0_management_engine:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "D21CFAD1-5422-4595-841D-A80F940B1545", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request."}, {"lang": "es", "value": "Red Hat CloudForms 3.1 Management Engine (CFME) anterior a 5.3 permite a usuarios remotos autenticados acceder a controladores y acciones sensibles a trav\u00e9s de una solicitud HTTP o HTTPS directa."}], "id": "CVE-2014-0140", "lastModified": "2023-02-13T00:32:43.220", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-10-06T14:55:08.110", "references": [{"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2014-1317.html"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1077359"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"acknowledgement": "This issue was discovered by Jan Rusnacko (Red Hat Product Security).", "affected_release": [{"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "certmonger-0:0.75.13-1.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "cfme-0:5.3.0.15-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "cfme-vnc-plugin-0:1.0.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "libdnet-0:1.12-11.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "lshw-0:B.02.16-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "mod_authnz_pam-0:0.9.2-1.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "mod_intercept_form_submit-0:0.9.7-1.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "mod_lookup_identity-0:0.9.2-1.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "netapp-manageability-sdk-0:4.0P1-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "open-vm-tools-0:9.2.3-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "prince-0:9.0r2-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "pyliblzma-0:0.5.3-7.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-actionmailer-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-actionpack-1:3.2.17-6.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-actionwebservice-1:3.1.0-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-active_hash-0:1.3.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-activemodel-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-activerecord-1:3.2.17-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-activeresource-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-activesupport-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-acts_as_list-0:0.1.9-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-acts_as_tree-0:0.1.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-addressable-0:2.2.8-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-akami-0:1.2.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-american_date-0:1.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-amq-protocol-0:1.9.2-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ancestry-0:1.2.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-arrayfields-0:4.9.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-awesome_print-0:1.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-awesome_spawn-0:1.2.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-aws-sdk-0:1.11.3-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-binary_struct-0:1.0.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-brakeman-0:2.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-bullet-0:4.6.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-bundler_ext-0:0.4.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-bunny-0:1.0.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-capybara-0:2.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-childprocess-0:0.3.9-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-chronic-0:0.3.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-churn-0:0.0.29-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-code_analyzer-0:0.3.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-color-0:1.4.1-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-colored-0:1.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-crack-0:0.3.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-daemons-0:1.1.9-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-dalli-0:2.2.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-default_value_for-0:1.0.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-elif-0:0.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-eventmachine-0:1.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-excon-0:0.31.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-execjs-0:2.0.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ezcrypto-0:0.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-facade-0:1.0.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-factory_girl-0:4.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-fastercsv-0:1.5.5-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-fattr-0:2.2.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ffi-0:1.9.3-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-flay-0:2.3.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-flog-0:3.2.3-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-fog-0:1.19.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-formatador-0:0.2.4-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-gssapi-0:1.1.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-gyoku-0:1.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-haml-0:4.0.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-haml-rails-0:0.4-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-handsoap-0:0.2.5-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-highline-0:1.6.21-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-hirb-0:0.7.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-hmac-0:0.4.0-7.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-hoe-0:2.12.3-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-httparty-0:0.10.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-httpclient-0:2.2.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-httpi-0:2.0.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-i18n-0:0.6.9-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-inifile-0:2.0.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-io-extra-0:1.2.6-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-japgolly-Saikuro-0:1.1.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-jbuilder-0:2.0.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-json-0:1.8.0-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-json_pure-0:1.8.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-libxml-ruby-0:2.2.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-linux_admin-0:0.9.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-little-plugger-0:1.1.3-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-log4r-0:1.1.8-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-logging-0:1.6.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-mail-0:2.5.4-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-main-0:4.7.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-map-0:6.5.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-metric_fu-0:3.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-mime-types-0:1.20.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-minitest-0:3.2.0-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-more_core_extensions-0:1.2.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-multi_json-0:1.7.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-multi_xml-0:0.5.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-net-ldap-0:0.7.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-net-ping-0:1.7.4-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-netrc-0:0.7.7-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-net-scp-0:1.1.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-net-sftp-0:2.0.5-7.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-net-ssh-0:2.9.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-nokogiri-0:1.5.6-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-nori-0:2.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-open4-0:1.3.0-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-outfielding-jqplot-rails-0:1.0.8-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ovirt_metrics-0:1.0.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-parallel-0:0.5.21-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-pdf-writer-0:1.1.8-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-pg-0:0.12.2-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-Platform-0:0.4.0-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-princely-0:1.2.6-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-progressbar-0:0.11.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-prototype-rails-0:3.2.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-qpid_messaging-0:0.20.2-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rack-1:1.4.5-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rack-test-0:0.6.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rails-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rails_best_practices-0:1.13.8-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-railties-1:3.2.17-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rake-0:10.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rake-compiler-0:0.8.3-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rbovirt-0:0.0.17-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rbvmomi-0:1.2.3-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rdoc-0:3.12.2-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-reek-0:1.3.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rest-client-0:1.6.7-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-roodi-0:2.2.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-0:2.12.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-core-0:2.12.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-expectations-0:2.12.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-fire-0:1.3.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-mocks-0:2.12.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rspec-rails-0:2.12.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby2ruby-0:2.0.6-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rubyforge-0:2.0.4-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby-graphviz-0:1.0.9-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rubyntlm-0:0.4.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby_parser-0:3.1.3-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby-plsql-0:0.4.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby-prof-0:0.13.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruby-progressbar-0:0.0.10-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rubyrep-0:1.2.0-6.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rubywbem-0:0.1.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rubyzip-0:0.9.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rufus-lru-0:1.0.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-rufus-scheduler-0:2.0.19-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ruport-0:1.7.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-savon-0:2.2.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-secure_headers-0:1.1.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-selenium-webdriver-0:2.32.1-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-sexp_processor-0:4.2.1-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-shindo-0:0.3.4-7.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-shoulda-matchers-0:1.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-simplecov-0:0.7.1-6.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-simplecov-html-0:0.7.1-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-simplecov-rcov-0:0.2.3-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-simplecov-rcov-text-0:0.0.2-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-simple-rss-0:1.2.3-8.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-slim-0:1.3.9-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-snmp-0:1.1.0-6.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-soap4r-0:1.6.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-state_machine-0:1.1.2-8.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-syntax-0:1.0.0-8.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-temple-0:0.6.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-terminal-table-0:1.4.5-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-test-spec-0:0.10.0-7.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-test-unit-0:2.4.5-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-thin-0:1.3.1-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-timecop-0:0.5.3-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-transaction-simple-0:1.4.0-5.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-trollop-0:1.16.2-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-uglifier-0:2.4.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-uniform_notifier-0:1.2.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-uuidtools-0:2.1.3-3.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-vcr-0:2.4.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-wasabi-0:3.1.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-webmock-0:1.11.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-websocket-0:1.0.7-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-winrm-0:1.1.3-4.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-xml-simple-0:1.0.12-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-xpath-0:2.0.0-1.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "ruby193-rubygem-ziya-0:2.3.0-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "selinux-policy-0:3.7.19-244.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "sneakernet_ca-0:0.1-2.el6cf", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}, {"advisory": "RHSA-2014:1317", "cpe": "cpe:/a:redhat:cloudforms_managementengine:5::el6", "package": "sssd-0:1.11.6-3.el6", "product_name": "CloudForms Management Engine 5.3", "release_date": "2014-10-02T00:00:00Z"}], "bugzilla": {"description": "CFME: default routes expose controllers and actions", "id": "1077359", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1077359"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "verified"}, "cwe": "CWE-749", "details": ["Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.", "It was found that Red Hat CloudForms exposed default routes that were reachable via HTTP(S) requests. An authenticated user could use this flaw to access potentially sensitive controllers and actions that would allow for privilege escalation."], "name": "CVE-2014-0140", "public_date": "2014-10-02T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-0140\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-0140"], "threat_severity": "Moderate"}