Lucene search
PRIOn knowledge basePRION:CVE-2015-7502HistoryApr 11, 2016 - 9:59 p.m.
Code injection
2016-04-1121:59:00
PRIOn knowledge base
www.prio-n.com
2
Red Hat CloudForms 3.2 Management Engine (CFME) 5.4.4 and CloudForms 4.0 Management Engine (CFME) 5.5.0 do not properly encrypt data in the backend PostgreSQL database, which might allow local users to obtain sensitive data and consequently gain privileges by leveraging access to (1) database exports or (2) log files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cloudforms | eq | 3.2 | |
| cloudforms | eq | 4.0 | |
| cloudforms_management_engine | eq | 5.4.4 | |
| cloudforms_management_engine | eq | 5.5.0 |
Related
cve
cve
CVE-2015-7502
2016-04-11 21:59:08
cvelist
cvelist
CVE-2015-7502
2016-04-11 21:00:00
redhat
redhat
(RHSA-2015:2620) Moderate: CFME 5.4.4 bug fixes, and enhancement update
2015-12-16 13:03:44
(RHSA-2015:2551) Moderate: CFME 5.5.0 bug fixes and enhancement update
2015-12-08 12:49:53
nvd
nvd
CVE-2015-7502
2016-04-11 21:59:08
veracode
veracode
Privilege Escalation
2019-01-15 09:08:53