Vulnerability Details CVE-2015-3163
The admin pages for power types and key types in Beaker before 20.1 do not have any access controls, which allows remote authenticated users to modify power types and key types via navigating to $BEAKER/powertypes and $BEAKER/keytypes respectively.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.2%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
- http://www.openwall.com/lists/oss-security/2015/05/08/1
- http://www.securityfocus.com/bid/74567
- https://beaker-project.org/jenkins-results/beaker-review-checks-docs/995/documentation/_build/html/whats-new/release-20.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1215034
- http://www.openwall.com/lists/oss-security/2015/05/08/1
- http://www.securityfocus.com/bid/74567
- https://beaker-project.org/jenkins-results/beaker-review-checks-docs/995/documentation/_build/html/whats-new/release-20.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1215034
Products affected by CVE-2015-3163
-
cpe:2.3:a:redhat:beaker:0.10.0
-
cpe:2.3:a:redhat:beaker:0.10.1
-
cpe:2.3:a:redhat:beaker:0.10.1-1
-
cpe:2.3:a:redhat:beaker:0.10.1-2
-
cpe:2.3:a:redhat:beaker:0.10.2
-
cpe:2.3:a:redhat:beaker:0.10.2-1
-
cpe:2.3:a:redhat:beaker:0.10.3
-
cpe:2.3:a:redhat:beaker:0.10.3-1
-
cpe:2.3:a:redhat:beaker:0.10.4
-
cpe:2.3:a:redhat:beaker:0.10.4-1
-
cpe:2.3:a:redhat:beaker:0.10.5
-
cpe:2.3:a:redhat:beaker:0.10.5-1
-
cpe:2.3:a:redhat:beaker:0.10.5-2
-
cpe:2.3:a:redhat:beaker:0.10.6
-
cpe:2.3:a:redhat:beaker:0.10.6-1
-
cpe:2.3:a:redhat:beaker:0.11.0
-
cpe:2.3:a:redhat:beaker:0.11.0-1
-
cpe:2.3:a:redhat:beaker:0.11.1
-
cpe:2.3:a:redhat:beaker:0.11.1-1
-
cpe:2.3:a:redhat:beaker:0.11.2
-
cpe:2.3:a:redhat:beaker:0.11.2-1
-
cpe:2.3:a:redhat:beaker:0.11.3
-
cpe:2.3:a:redhat:beaker:0.11.3-1
-
cpe:2.3:a:redhat:beaker:0.12.0
-
cpe:2.3:a:redhat:beaker:0.12.0-1
-
cpe:2.3:a:redhat:beaker:0.12.0-2
-
cpe:2.3:a:redhat:beaker:0.12.0-3
-
cpe:2.3:a:redhat:beaker:0.12.1
-
cpe:2.3:a:redhat:beaker:0.12.1-1
-
cpe:2.3:a:redhat:beaker:0.13.0
-
cpe:2.3:a:redhat:beaker:0.13.0-1
-
cpe:2.3:a:redhat:beaker:0.13.0-2
-
cpe:2.3:a:redhat:beaker:0.13.0-3
-
cpe:2.3:a:redhat:beaker:0.13.1
-
cpe:2.3:a:redhat:beaker:0.13.1-1
-
cpe:2.3:a:redhat:beaker:0.13.2
-
cpe:2.3:a:redhat:beaker:0.13.2-1
-
cpe:2.3:a:redhat:beaker:0.14.0
-
cpe:2.3:a:redhat:beaker:0.14.0-1
-
cpe:2.3:a:redhat:beaker:0.14.1
-
cpe:2.3:a:redhat:beaker:0.14.1-1
-
cpe:2.3:a:redhat:beaker:0.14.2
-
cpe:2.3:a:redhat:beaker:0.14.3
-
cpe:2.3:a:redhat:beaker:0.14.4
-
cpe:2.3:a:redhat:beaker:0.15.0
-
cpe:2.3:a:redhat:beaker:0.15.1
-
cpe:2.3:a:redhat:beaker:0.15.2
-
cpe:2.3:a:redhat:beaker:0.15.3
-
cpe:2.3:a:redhat:beaker:0.15.4
-
cpe:2.3:a:redhat:beaker:0.15.5
-
cpe:2.3:a:redhat:beaker:0.16.0
-
cpe:2.3:a:redhat:beaker:0.16.1
-
cpe:2.3:a:redhat:beaker:0.16.2
-
cpe:2.3:a:redhat:beaker:0.17.0
-
cpe:2.3:a:redhat:beaker:0.17.1
-
cpe:2.3:a:redhat:beaker:0.17.2
-
cpe:2.3:a:redhat:beaker:0.17.3
-
cpe:2.3:a:redhat:beaker:0.18.0
-
cpe:2.3:a:redhat:beaker:0.18.1
-
cpe:2.3:a:redhat:beaker:0.18.2
-
cpe:2.3:a:redhat:beaker:0.18.3
-
cpe:2.3:a:redhat:beaker:0.18.4
-
cpe:2.3:a:redhat:beaker:0.3
-
cpe:2.3:a:redhat:beaker:0.4
-
cpe:2.3:a:redhat:beaker:0.4.10
-
cpe:2.3:a:redhat:beaker:0.4.11
-
cpe:2.3:a:redhat:beaker:0.4.12
-
cpe:2.3:a:redhat:beaker:0.4.13
-
cpe:2.3:a:redhat:beaker:0.4.14
-
cpe:2.3:a:redhat:beaker:0.4.15
-
cpe:2.3:a:redhat:beaker:0.4.16
-
cpe:2.3:a:redhat:beaker:0.4.17
-
cpe:2.3:a:redhat:beaker:0.4.18
-
cpe:2.3:a:redhat:beaker:0.4.2
-
cpe:2.3:a:redhat:beaker:0.4.20
-
cpe:2.3:a:redhat:beaker:0.4.22
-
cpe:2.3:a:redhat:beaker:0.4.29
-
cpe:2.3:a:redhat:beaker:0.4.3
-
cpe:2.3:a:redhat:beaker:0.4.30
-
cpe:2.3:a:redhat:beaker:0.4.31
-
cpe:2.3:a:redhat:beaker:0.4.32
-
cpe:2.3:a:redhat:beaker:0.4.36
-
cpe:2.3:a:redhat:beaker:0.4.37
-
cpe:2.3:a:redhat:beaker:0.4.38
-
cpe:2.3:a:redhat:beaker:0.4.39
-
cpe:2.3:a:redhat:beaker:0.4.4
-
cpe:2.3:a:redhat:beaker:0.4.40
-
cpe:2.3:a:redhat:beaker:0.4.41
-
cpe:2.3:a:redhat:beaker:0.4.42
-
cpe:2.3:a:redhat:beaker:0.4.43
-
cpe:2.3:a:redhat:beaker:0.4.46
-
cpe:2.3:a:redhat:beaker:0.4.5
-
cpe:2.3:a:redhat:beaker:0.4.50
-
cpe:2.3:a:redhat:beaker:0.4.52
-
cpe:2.3:a:redhat:beaker:0.4.57
-
cpe:2.3:a:redhat:beaker:0.4.59
-
cpe:2.3:a:redhat:beaker:0.4.6
-
cpe:2.3:a:redhat:beaker:0.4.63
-
cpe:2.3:a:redhat:beaker:0.4.64
-
cpe:2.3:a:redhat:beaker:0.4.67
-
cpe:2.3:a:redhat:beaker:0.4.68
-
cpe:2.3:a:redhat:beaker:0.4.69
-
cpe:2.3:a:redhat:beaker:0.4.7
-
cpe:2.3:a:redhat:beaker:0.4.70
-
cpe:2.3:a:redhat:beaker:0.4.75
-
cpe:2.3:a:redhat:beaker:0.4.76
-
cpe:2.3:a:redhat:beaker:0.4.77
-
cpe:2.3:a:redhat:beaker:0.4.78
-
cpe:2.3:a:redhat:beaker:0.4.79
-
cpe:2.3:a:redhat:beaker:0.4.8
-
cpe:2.3:a:redhat:beaker:0.4.80
-
cpe:2.3:a:redhat:beaker:0.4.81
-
cpe:2.3:a:redhat:beaker:0.4.82
-
cpe:2.3:a:redhat:beaker:0.4.83
-
cpe:2.3:a:redhat:beaker:0.4.84
-
cpe:2.3:a:redhat:beaker:0.4.85
-
cpe:2.3:a:redhat:beaker:0.4.86
-
cpe:2.3:a:redhat:beaker:0.4.87
-
cpe:2.3:a:redhat:beaker:0.4.88
-
cpe:2.3:a:redhat:beaker:0.4.89
-
cpe:2.3:a:redhat:beaker:0.4.9
-
cpe:2.3:a:redhat:beaker:0.4.91
-
cpe:2.3:a:redhat:beaker:0.5.3
-
cpe:2.3:a:redhat:beaker:0.5.38
-
cpe:2.3:a:redhat:beaker:0.5.40
-
cpe:2.3:a:redhat:beaker:0.5.42
-
cpe:2.3:a:redhat:beaker:0.5.43
-
cpe:2.3:a:redhat:beaker:0.5.44
-
cpe:2.3:a:redhat:beaker:0.5.45
-
cpe:2.3:a:redhat:beaker:0.5.46
-
cpe:2.3:a:redhat:beaker:0.5.47
-
cpe:2.3:a:redhat:beaker:0.5.48-1
-
cpe:2.3:a:redhat:beaker:0.5.49-1
-
cpe:2.3:a:redhat:beaker:0.5.50-1
-
cpe:2.3:a:redhat:beaker:0.5.51-1
-
cpe:2.3:a:redhat:beaker:0.5.51-2
-
cpe:2.3:a:redhat:beaker:0.5.52-1
-
cpe:2.3:a:redhat:beaker:0.5.52-2
-
cpe:2.3:a:redhat:beaker:0.5.52-3
-
cpe:2.3:a:redhat:beaker:0.5.53-1
-
cpe:2.3:a:redhat:beaker:0.5.54-1
-
cpe:2.3:a:redhat:beaker:0.5.55-1
-
cpe:2.3:a:redhat:beaker:0.5.56-1
-
cpe:2.3:a:redhat:beaker:0.5.57-1
-
cpe:2.3:a:redhat:beaker:0.5.57-2
-
cpe:2.3:a:redhat:beaker:0.5.58-1
-
cpe:2.3:a:redhat:beaker:0.5.58-2
-
cpe:2.3:a:redhat:beaker:0.5.58-3
-
cpe:2.3:a:redhat:beaker:0.5.59-1
-
cpe:2.3:a:redhat:beaker:0.5.59-2
-
cpe:2.3:a:redhat:beaker:0.5.59-3
-
cpe:2.3:a:redhat:beaker:0.5.6
-
cpe:2.3:a:redhat:beaker:0.5.60-1
-
cpe:2.3:a:redhat:beaker:0.5.60-2
-
cpe:2.3:a:redhat:beaker:0.5.60-3
-
cpe:2.3:a:redhat:beaker:0.5.61-1
-
cpe:2.3:a:redhat:beaker:0.5.61-2
-
cpe:2.3:a:redhat:beaker:0.5.61-3
-
cpe:2.3:a:redhat:beaker:0.5.61-4
-
cpe:2.3:a:redhat:beaker:0.5.62-1
-
cpe:2.3:a:redhat:beaker:0.5.62-2
-
cpe:2.3:a:redhat:beaker:0.5.63-1
-
cpe:2.3:a:redhat:beaker:0.5.63-2
-
cpe:2.3:a:redhat:beaker:0.5.63-3
-
cpe:2.3:a:redhat:beaker:0.5.63-4
-
cpe:2.3:a:redhat:beaker:0.5.63-5
-
cpe:2.3:a:redhat:beaker:0.5.63-6
-
cpe:2.3:a:redhat:beaker:0.5.64-1
-
cpe:2.3:a:redhat:beaker:0.5.7
-
cpe:2.3:a:redhat:beaker:0.5.8
-
cpe:2.3:a:redhat:beaker:0.6.0-1
-
cpe:2.3:a:redhat:beaker:0.6.0-2
-
cpe:2.3:a:redhat:beaker:0.6.0-3
-
cpe:2.3:a:redhat:beaker:0.6.1
-
cpe:2.3:a:redhat:beaker:0.6.1-1
-
cpe:2.3:a:redhat:beaker:0.6.1-2
-
cpe:2.3:a:redhat:beaker:0.6.1-3
-
cpe:2.3:a:redhat:beaker:0.6.1-4
-
cpe:2.3:a:redhat:beaker:0.6.1-5
-
cpe:2.3:a:redhat:beaker:0.6.10-1
-
cpe:2.3:a:redhat:beaker:0.6.10-2
-
cpe:2.3:a:redhat:beaker:0.6.10-3
-
cpe:2.3:a:redhat:beaker:0.6.10-4
-
cpe:2.3:a:redhat:beaker:0.6.11-1
-
cpe:2.3:a:redhat:beaker:0.6.11-2
-
cpe:2.3:a:redhat:beaker:0.6.12-1
-
cpe:2.3:a:redhat:beaker:0.6.13-1
-
cpe:2.3:a:redhat:beaker:0.6.13-2
-
cpe:2.3:a:redhat:beaker:0.6.13-3
-
cpe:2.3:a:redhat:beaker:0.6.14-1
-
cpe:2.3:a:redhat:beaker:0.6.14-10
-
cpe:2.3:a:redhat:beaker:0.6.14-2
-
cpe:2.3:a:redhat:beaker:0.6.14-3
-
cpe:2.3:a:redhat:beaker:0.6.14-4
-
cpe:2.3:a:redhat:beaker:0.6.14-5
-
cpe:2.3:a:redhat:beaker:0.6.14-6
-
cpe:2.3:a:redhat:beaker:0.6.14-7
-
cpe:2.3:a:redhat:beaker:0.6.14-8
-
cpe:2.3:a:redhat:beaker:0.6.14-9
-
cpe:2.3:a:redhat:beaker:0.6.15-1
-
cpe:2.3:a:redhat:beaker:0.6.15-2
-
cpe:2.3:a:redhat:beaker:0.6.16-1
-
cpe:2.3:a:redhat:beaker:0.6.17-1
-
cpe:2.3:a:redhat:beaker:0.6.18-1
-
cpe:2.3:a:redhat:beaker:0.6.2-1
-
cpe:2.3:a:redhat:beaker:0.6.3-1
-
cpe:2.3:a:redhat:beaker:0.6.3-2
-
cpe:2.3:a:redhat:beaker:0.6.4-1
-
cpe:2.3:a:redhat:beaker:0.6.4-2
-
cpe:2.3:a:redhat:beaker:0.6.4-3
-
cpe:2.3:a:redhat:beaker:0.6.4-4
-
cpe:2.3:a:redhat:beaker:0.6.5-1
-
cpe:2.3:a:redhat:beaker:0.6.5-2
-
cpe:2.3:a:redhat:beaker:0.6.5-3
-
cpe:2.3:a:redhat:beaker:0.6.6-1
-
cpe:2.3:a:redhat:beaker:0.6.6-2
-
cpe:2.3:a:redhat:beaker:0.6.7-1
-
cpe:2.3:a:redhat:beaker:0.6.7-2
-
cpe:2.3:a:redhat:beaker:0.6.8-1
-
cpe:2.3:a:redhat:beaker:0.6.8-2
-
cpe:2.3:a:redhat:beaker:0.6.8-3
-
cpe:2.3:a:redhat:beaker:0.6.8-4
-
cpe:2.3:a:redhat:beaker:0.6.8-5
-
cpe:2.3:a:redhat:beaker:0.6.9-1
-
cpe:2.3:a:redhat:beaker:0.7.0-1
-
cpe:2.3:a:redhat:beaker:0.7.1-1
-
cpe:2.3:a:redhat:beaker:0.7.1-2
-
cpe:2.3:a:redhat:beaker:0.7.2-1
-
cpe:2.3:a:redhat:beaker:0.7.2-2
-
cpe:2.3:a:redhat:beaker:0.7.2-3
-
cpe:2.3:a:redhat:beaker:0.7.3-1
-
cpe:2.3:a:redhat:beaker:0.7.3-2
-
cpe:2.3:a:redhat:beaker:0.7.3-4
-
cpe:2.3:a:redhat:beaker:0.7.3-5
-
cpe:2.3:a:redhat:beaker:0.7.3-6
-
cpe:2.3:a:redhat:beaker:0.8.0-1
-
cpe:2.3:a:redhat:beaker:0.8.0-10
-
cpe:2.3:a:redhat:beaker:0.8.0-11
-
cpe:2.3:a:redhat:beaker:0.8.0-12
-
cpe:2.3:a:redhat:beaker:0.8.0-13
-
cpe:2.3:a:redhat:beaker:0.8.0-14
-
cpe:2.3:a:redhat:beaker:0.8.0-15
-
cpe:2.3:a:redhat:beaker:0.8.0-16
-
cpe:2.3:a:redhat:beaker:0.8.0-17
-
cpe:2.3:a:redhat:beaker:0.8.0-18
-
cpe:2.3:a:redhat:beaker:0.8.0-19
-
cpe:2.3:a:redhat:beaker:0.8.0-2
-
cpe:2.3:a:redhat:beaker:0.8.0-20
-
cpe:2.3:a:redhat:beaker:0.8.0-21
-
cpe:2.3:a:redhat:beaker:0.8.0-22
-
cpe:2.3:a:redhat:beaker:0.8.0-23
-
cpe:2.3:a:redhat:beaker:0.8.0-24
-
cpe:2.3:a:redhat:beaker:0.8.0-24.1
-
cpe:2.3:a:redhat:beaker:0.8.0-25
-
cpe:2.3:a:redhat:beaker:0.8.0-25.1
-
cpe:2.3:a:redhat:beaker:0.8.0-26
-
cpe:2.3:a:redhat:beaker:0.8.0-27
-
cpe:2.3:a:redhat:beaker:0.8.0-28
-
cpe:2.3:a:redhat:beaker:0.8.0-29
-
cpe:2.3:a:redhat:beaker:0.8.0-3
-
cpe:2.3:a:redhat:beaker:0.8.0-4
-
cpe:2.3:a:redhat:beaker:0.8.0-5
-
cpe:2.3:a:redhat:beaker:0.8.0-6
-
cpe:2.3:a:redhat:beaker:0.8.0-7
-
cpe:2.3:a:redhat:beaker:0.8.0-8
-
cpe:2.3:a:redhat:beaker:0.8.0-9
-
cpe:2.3:a:redhat:beaker:0.8.1-1
-
cpe:2.3:a:redhat:beaker:0.8.1-2
-
cpe:2.3:a:redhat:beaker:0.8.1-3
-
cpe:2.3:a:redhat:beaker:0.8.1-4
-
cpe:2.3:a:redhat:beaker:0.8.1-5
-
cpe:2.3:a:redhat:beaker:0.8.1-5.1
-
cpe:2.3:a:redhat:beaker:0.8.1-5.2
-
cpe:2.3:a:redhat:beaker:0.8.1-6
-
cpe:2.3:a:redhat:beaker:0.8.1-7
-
cpe:2.3:a:redhat:beaker:0.8.1-8
-
cpe:2.3:a:redhat:beaker:0.8.1-9
-
cpe:2.3:a:redhat:beaker:0.8.2-1
-
cpe:2.3:a:redhat:beaker:0.8.2-10
-
cpe:2.3:a:redhat:beaker:0.8.2-11
-
cpe:2.3:a:redhat:beaker:0.8.2-12
-
cpe:2.3:a:redhat:beaker:0.8.2-2
-
cpe:2.3:a:redhat:beaker:0.8.2-3
-
cpe:2.3:a:redhat:beaker:0.8.2-4
-
cpe:2.3:a:redhat:beaker:0.8.2-5
-
cpe:2.3:a:redhat:beaker:0.8.2-6
-
cpe:2.3:a:redhat:beaker:0.8.2-7
-
cpe:2.3:a:redhat:beaker:0.8.2-8
-
cpe:2.3:a:redhat:beaker:0.8.2-9
-
cpe:2.3:a:redhat:beaker:0.8.99-1
-
cpe:2.3:a:redhat:beaker:0.8.99-2
-
cpe:2.3:a:redhat:beaker:0.8.99-3
-
cpe:2.3:a:redhat:beaker:0.8.99-4
-
cpe:2.3:a:redhat:beaker:0.9.0
-
cpe:2.3:a:redhat:beaker:0.9.0-1
-
cpe:2.3:a:redhat:beaker:0.9.0-2
-
cpe:2.3:a:redhat:beaker:0.9.0-3
-
cpe:2.3:a:redhat:beaker:0.9.0-4
-
cpe:2.3:a:redhat:beaker:0.9.0-5
-
cpe:2.3:a:redhat:beaker:0.9.0-6
-
cpe:2.3:a:redhat:beaker:0.9.0-7
-
cpe:2.3:a:redhat:beaker:0.9.1
-
cpe:2.3:a:redhat:beaker:0.9.1-1
-
cpe:2.3:a:redhat:beaker:0.9.1-2
-
cpe:2.3:a:redhat:beaker:0.9.1-3
-
cpe:2.3:a:redhat:beaker:0.9.2
-
cpe:2.3:a:redhat:beaker:0.9.2-1
-
cpe:2.3:a:redhat:beaker:0.9.2-2
-
cpe:2.3:a:redhat:beaker:0.9.2-3
-
cpe:2.3:a:redhat:beaker:0.9.2-4
-
cpe:2.3:a:redhat:beaker:0.9.3
-
cpe:2.3:a:redhat:beaker:0.9.3-1
-
cpe:2.3:a:redhat:beaker:0.9.3-2
-
cpe:2.3:a:redhat:beaker:0.9.3-3
-
cpe:2.3:a:redhat:beaker:0.9.3-4
-
cpe:2.3:a:redhat:beaker:0.9.3-5
-
cpe:2.3:a:redhat:beaker:0.9.3-6
-
cpe:2.3:a:redhat:beaker:0.9.3-7
-
cpe:2.3:a:redhat:beaker:0.9.4
-
cpe:2.3:a:redhat:beaker:0.9.4-1
-
cpe:2.3:a:redhat:beaker:0.9.4-2
-
cpe:2.3:a:redhat:beaker:19.0
-
cpe:2.3:a:redhat:beaker:19.1
-
cpe:2.3:a:redhat:beaker:19.2
-
cpe:2.3:a:redhat:beaker:19.3
-
cpe:2.3:a:redhat:beaker:20.0