Medium severity6.3NVD Advisory· Published Oct 31, 2024· Updated Jun 17, 2026
CVE-2024-8553
CVE-2024-8553
Description
A vulnerability was found in Foreman's loader macros introduced with report templates. These macros may allow an authenticated user with permissions to view and create templates to read any field from Foreman's database. By using specific strings in the loader macros, users can bypass permissions and access sensitive information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Package: https://rubygems.org/gems/foreman
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.