VYPR

Cloudforms 3.0.4 Management Engine

by Red Hat

CVEs (2)

  • CVE-2014-3642Oct 6, 2014
    risk 0.00cvss epss 0.01

    vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method."

  • CVE-2014-0140Oct 6, 2014
    risk 0.00cvss epss 0.01

    Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.