CVE-2017-7535
Description
foreman before version 1.16.0 is vulnerable to a stored XSS in organizations/locations assignment to hosts. Exploiting this requires a user to actively assign hosts to an organization that contains html in its name which is visible to the user prior to taking action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A stored XSS vulnerability in Foreman before 1.16.0 allows attackers to execute arbitrary JavaScript by assigning a host to an organization with an HTML-injected name.
Vulnerability
A stored cross-site scripting (XSS) vulnerability exists in Foreman versions before 1.16.0 in the organization/location assignment page for hosts. An attacker can inject arbitrary HTML or JavaScript into an organization's name; this malicious payload is then stored and executed when a user subsequently assigns a host to that organization [1].
Exploitation
Exploitation requires an attacker to have the ability to create or modify an organization's name (e.g., via the administration interface) and to include HTML/script code in that name. When another user (with host assignment privileges) visits the manage organization page and selects that organization for a host, the stored payload executes in the context of the victim's browser session [1][2]. No further user interaction beyond the assignment action is needed.
Impact
Successful exploitation allows an attacker to execute arbitrary JavaScript in the context of the victim's Foreman session. This can lead to session hijacking, data exfiltration, or further administrative actions within the Foreman interface, depending on the victim's privileges [1].
Mitigation
The vulnerability is fixed in Foreman version 1.16.0 and later. Users should upgrade to that version or newer. For earlier versions, no official workaround is documented; administrators should restrict organization name creation to trusted users and audit existing organization names for malicious content [1][2].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: 1.16.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- seclists.org/oss-sec/2017/q3/521mitremailing-listx_refsource_MLIST
- www.securityfocus.com/bid/99604mitrevdb-entryx_refsource_BID
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
- projects.theforeman.org/issues/20963mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.