CVE-2012-5603 Vulnerability Details

  /     /     /  

CVE-2012-5603 Metadata Quick Info

CVE Published: 04/01/2013 | CVE Updated: 06/08/2024 | CVE Year: 2012
Source: redhat | Vendor: n/a | Product: n/a
Status : PUBLISHED

CVE-2012-5603 Description

proxies_controller.rb in Katello in Red Hat CloudForms before 1.1 does not properly check permissions, which allows remote authenticated users to read consumer certificates or change arbitrary users\' settings via unspecified vectors related to the "consumer UUID" of a system.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: n/a
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).