Redhat: >> Cloudforms 3.0.3 Management Engine >> 5.2.3 Security Vulnerabilities
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method."
CVSS Score
6.5
EPSS Score
0.004
Published
2014-10-06
Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.
CVSS Score
4.0
EPSS Score
0.002
Published
2014-10-06