6.5 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.7%
foreman before 1.14.0 is vulnerable to an information leak. It was found that Foreman form helper does not authorize options for associated objects. Unauthorized user can see names of such objects if their count is less than 6.
www.securityfocus.com/bid/94230
bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7077
projects.theforeman.org/issues/16971
theforeman.org/security.html#2016-7077