Theforeman » Foreman : Security Vulnerabilities, CVEs, Published In 2014 (Code Execution)
Foreman before 1.1 allows remote attackers to execute arbitrary code via a crafted YAML object to the (1) fact or (2) report import API.
Max CVSS
7.5
EPSS Score
1.82%
Published
2014-05-08
Updated
2014-05-08
1 vulnerabilities found