6.5
CVE-2014-3642
- EPSS 0.28%
- Published 06.10.2014 14:55:10
- Last modified 12.04.2025 10:46:40
- Source secalert@redhat.com
- Teams watchlist Login
- Open Login
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method."
Data is provided by the National Vulnerability Database (NVD)
Redhat ≫ Cloudforms 3.0.1 Management Engine Version5.2.1
Redhat ≫ Cloudforms 3.0.2 Management Engine Version5.2.2
Redhat ≫ Cloudforms 3.0.3 Management Engine Version5.2.3
Redhat ≫ Cloudforms 3.0.4 Management Engine Version5.2.4
Redhat ≫ Cloudforms 3.0.5 Management Engine Version <= 5.2.5
Redhat ≫ Cloudforms 3.0 Management Engine Version5.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.513 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|