Unrated severityNVD Advisory· Published Jan 4, 2013· Updated Apr 29, 2026

CVE-2012-5603

Description

proxies_controller.rb in Katello in Red Hat CloudForms before 1.1 does not properly check permissions, which allows remote authenticated users to read consumer certificates or change arbitrary users' settings via unspecified vectors related to the "consumer UUID" of a system.

Affected products

Red Hat/Cloudforms
cpe:2.3:a:redhat:cloudforms:*:*:*:*:*:*:*:*
Range: <=1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rhn.redhat.com/errata/RHSA-2012-1543.htmlnvdVendor Advisory
secunia.com/advisories/51472nvdVendor Advisory
osvdb.org/88140nvd
osvdb.org/88142nvd
rhn.redhat.com/errata/RHSA-2013-0544.htmlnvd
www.securityfocus.com/bid/56819nvd
bugzilla.redhat.com/show_bug.cginvd
exchange.xforce.ibmcloud.com/vulnerabilities/80549nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000