[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] CVE-2016-4451: Privileges escalation through Organization and Locations Foreman API
From:       Marek =?ISO-8859-1?Q?Hul=E1n?= <mhulan () redhat ! com>
Date:       2016-05-27 12:34:23
Message-ID: 1533281.bsIDiLpCPt () tony
[Download RAW message or body]

CVE-2016-4451: Privilege escalation through Organization and Locations API

When accessing Foreman as a user limited to specific organization, if users 
know other organization id and have unlimited filters they can access/modify 
other organization data. They just have to set the id as API parameter.

Mitigation: make sure you have filters restricted to organizations or locations 
when you limit user by assigning him particular organization or location.

Affects Foreman 1.7 and higher

Patch available at https://github.com/theforeman/foreman/pull/3553
Fix released in Foreman 1.11.3 (to be released)
For more information please see Redmine issue 
http://projects.theforeman.org/issues/15182

--
Marek


[prev in list] [next in list] [prev in thread] [next in thread]