{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-06-02T00:00:00", "descriptions": [{"lang": "en", "value": "The (1) Organization and (2) Locations APIs and UIs in Foreman before 1.11.4 and 1.12.x before 1.12.0-RC3 allow remote authenticated users to bypass organization and location restrictions and (a) read, (b) edit, or (c) delete arbitrary organizations or locations via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-04T19:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://theforeman.org/security.html#2016-4475"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://projects.theforeman.org/issues/15268"}, {"name": "RHBA-2016:1615", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHBA-2016:1615"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://projects.theforeman.org/projects/foreman/repository/revisions/a30ab44ed6f140f1791afc51a1e448afc2ff28f9"}, {"name": "92125", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/92125"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T00:32:25.430Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://theforeman.org/security.html#2016-4475"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://projects.theforeman.org/issues/15268"}, {"name": "RHBA-2016:1615", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHBA-2016:1615"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://projects.theforeman.org/projects/foreman/repository/revisions/a30ab44ed6f140f1791afc51a1e448afc2ff28f9"}, {"name": "92125", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/92125"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-4475", "datePublished": "2016-08-19T21:00:00", "dateReserved": "2016-05-02T00:00:00", "dateUpdated": "2024-08-06T00:32:25.430Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*", "matchCriteriaId": "0BB61479-F6DC-4D2B-B5DE-703C8DBFE81D", "versionEndIncluding": "1.11.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:theforeman:foreman:1.12.0:*:*:*:*:*:*:*", "matchCriteriaId": "C2D1166A-4EAE-40B2-8F85-1FA23C3949E2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The (1) Organization and (2) Locations APIs and UIs in Foreman before 1.11.4 and 1.12.x before 1.12.0-RC3 allow remote authenticated users to bypass organization and location restrictions and (a) read, (b) edit, or (c) delete arbitrary organizations or locations via unspecified vectors."}, {"lang": "es", "value": "Las APIs y UIs (1) Organization y (2) Locations en Foreman en versiones anteriores a 1.11.4 y 1.12.x en versiones anteriores a 1.12.0-RC3 permiten a usuarios remotos autenticados eludir las restricciones de organizaci\u00f3n y localizaci\u00f3n y (a) leer, (b) editar o (c) eliminar organizaciones o localizaciones arbitrarias a trav\u00e9s de vectores no especificados."}], "id": "CVE-2016-4475", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-08-19T21:59:09.430", "references": [{"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://projects.theforeman.org/issues/15268"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://projects.theforeman.org/projects/foreman/repository/revisions/a30ab44ed6f140f1791afc51a1e448afc2ff28f9"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/92125"}, {"source": "secalert@redhat.com", "url": "https://access.redhat.com/errata/RHBA-2016:1615"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "https://theforeman.org/security.html#2016-4475"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://projects.theforeman.org/issues/15268"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://projects.theforeman.org/projects/foreman/repository/revisions/a30ab44ed6f140f1791afc51a1e448afc2ff28f9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/92125"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://access.redhat.com/errata/RHBA-2016:1615"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://theforeman.org/security.html#2016-4475"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-254"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "foreman-0:1.11.0.51-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "foreman-installer-1:1.11.0.10-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "foreman-proxy-0:1.11.0.5-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "pulp-0:2.8.3.4-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "satellite-0:6.2.1-1.2.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "tfm-rubygem-foreman_discovery-0:5.0.0.9-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.5-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "tfm-rubygem-hammer_cli_katello-0:0.0.22.25-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "tfm-rubygem-katello-0:3.0.0.70-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.1::el6", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "foreman-0:1.11.0.51-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "foreman-installer-1:1.11.0.10-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "foreman-proxy-0:1.11.0.5-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "pulp-0:2.8.3.4-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "satellite-0:6.2.1-1.2.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "tfm-rubygem-foreman_discovery-0:5.0.0.9-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.5-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "tfm-rubygem-hammer_cli_katello-0:0.0.22.25-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "tfm-rubygem-katello-0:3.0.0.70-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.1::el6", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.el6sat", "product_name": "Red Hat Satellite 6.2 for RHEL 6", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "foreman-0:1.11.0.51-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "foreman-installer-1:1.11.0.10-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "foreman-proxy-0:1.11.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "pulp-0:2.8.3.4-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "satellite-0:6.2.1-1.2.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "tfm-rubygem-foreman_discovery-0:5.0.0.9-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "tfm-rubygem-hammer_cli_katello-0:0.0.22.25-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "tfm-rubygem-katello-0:3.0.0.70-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite:6.2::el7", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "foreman-0:1.11.0.51-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "foreman-installer-1:1.11.0.10-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "foreman-proxy-0:1.11.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "pulp-0:2.8.3.4-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "satellite-0:6.2.1-1.2.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "tfm-rubygem-foreman_discovery-0:5.0.0.9-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "tfm-rubygem-hammer_cli_foreman_admin-0:0.0.5-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "tfm-rubygem-hammer_cli_katello-0:0.0.22.25-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "tfm-rubygem-katello-0:3.0.0.70-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}, {"advisory": "RHBA-2016:1615", "cpe": "cpe:/a:redhat:satellite_capsule:6.2::el7", "package": "tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.el7sat", "product_name": "Red Hat Satellite 6.2 for RHEL 7", "release_date": "2016-08-16T00:00:00Z"}], "bugzilla": {"description": "foreman: API and UI actions/URLs not limited to the orgs/locations assigned", "id": "1342439", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1342439"}, "csaw": false, "cvss": {"cvss_base_score": "4.9", "cvss_scoring_vector": "AV:N/AC:M/Au:S/C:P/I:P/A:N", "status": "verified"}, "cwe": "CWE-284", "details": ["The (1) Organization and (2) Locations APIs and UIs in Foreman before 1.11.4 and 1.12.x before 1.12.0-RC3 allow remote authenticated users to bypass organization and location restrictions and (a) read, (b) edit, or (c) delete arbitrary organizations or locations via unspecified vectors.", "It was found that the foreman API and UI actions and URLs are not properly limited to the organizations and locations they were assigned to. This could allow an attacker to view and update other organizations and locations in the system that they should not be allowed to."], "name": "CVE-2016-4475", "package_state": [{"cpe": "cpe:/a:redhat:openstack-installer:5", "fix_state": "Affected", "package_name": "foreman", "product_name": "OpenStack Foreman"}, {"cpe": "cpe:/a:redhat:ceph_storage:1.3", "fix_state": "Will not fix", "package_name": "foreman", "product_name": "Red Hat Ceph Storage 1.3"}, {"cpe": "cpe:/a:redhat:openstack-installer:6", "fix_state": "Affected", "package_name": "foreman", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6 (Juno) Installer"}], "public_date": "2016-06-02T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-4475\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-4475"], "threat_severity": "Moderate"}

{}