VYPR
Medium severity5.4NVD Advisory· Published May 20, 2016· Updated Jun 17, 2026

CVE-2016-2100

CVE-2016-2100

Description

Foreman before 1.10.3 and 1.11.0 before 1.11.0-RC2 allow remote authenticated users to read, modify, or delete private bookmarks by leveraging the (1) edit_bookmarks or (2) destroy_bookmarks permission.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*range: <=1.10.2
    • cpe:2.3:a:theforeman:foreman:1.11.0:*:*:*:*:*:*:*
    • cpe:2.3:a:theforeman:foreman:1.11.0:rc1:*:*:*:*:*:*
    • (no CPE)range: <1.10.3 or >=1.11.0-RC1 <1.11.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.