CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-0057

The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://rhn.redhat.com/errata/RHSA-2014-0215.html
http://secunia.com/advisories/57376
https://bugzilla.redhat.com/show_bug.cgi?id=1064140
http://rhn.redhat.com/errata/RHSA-2014-0215.html
http://secunia.com/advisories/57376
https://bugzilla.redhat.com/show_bug.cgi?id=1064140

Products affected by CVE-2014-0057

Redhat » Cloudforms » Version: 3.0

cpe:2.3:a:redhat:cloudforms:3.0
Redhat » Cloudforms 3.0 Management Engine » Version: 5.2

cpe:2.3:a:redhat:cloudforms_3.0_management_engine:5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0057

Products

Pricing

Contact Us