Redhat: >> Openstack Security Vulnerabilities
The create method in app/controllers/users_controller.rb in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create or edit other users to gain privileges by (1) changing the admin flag or (2) assigning an arbitrary role.
CVSS Score
6.0
EPSS Score
0.324
Published
2013-07-31
Eval injection vulnerability in the create method in the Bookmarks controller in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create bookmarks to execute arbitrary code via a controller name attribute.
CVSS Score
6.0
EPSS Score
0.457
Published
2013-07-31
Google V8, as used in Google Chrome before 28.0.1500.95, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
CVSS Score
7.5
EPSS Score
0.014
Published
2013-07-31
Page 22