Medium severity5.4NVD Advisory· Published May 20, 2016· Updated Jun 17, 2026
CVE-2016-2100
CVE-2016-2100
Description
Foreman before 1.10.3 and 1.11.0 before 1.11.0-RC2 allow remote authenticated users to read, modify, or delete private bookmarks by leveraging the (1) edit_bookmarks or (2) destroy_bookmarks permission.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*range: <=1.10.2
- cpe:2.3:a:theforeman:foreman:1.11.0:*:*:*:*:*:*:*
- cpe:2.3:a:theforeman:foreman:1.11.0:rc1:*:*:*:*:*:*
- (no CPE)range: <1.10.3 or >=1.11.0-RC1 <1.11.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.