Lucene search
PRIOn knowledge basePRION:CVE-2019-14894HistoryJun 22, 2020 - 6:15 p.m.
Remote code execution
2020-06-2218:15:00
PRIOn knowledge base
www.prio-n.com
2
A flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cloudforms_management_engine | eq | 5.10 | |
| cloudforms_management_engine | eq | 5.11 |
Related
nvd
nvd
CVE-2019-14894
2020-06-22 18:15:10
redhat
redhat
(RHSA-2020:0589) Important: CloudForms 4.7.15 security, bug fix and enhancement update
2020-02-25 05:27:29
(RHSA-2020:0588) Important: CloudForms 5.0.3 security update
2020-02-25 05:26:46
nessus
nessus
RHEL 7 : CloudForms 4.7.15 (RHSA-2020:0589)
2023-01-23 00:00:00
RHEL 8 : CloudForms 5.0.3 (RHSA-2020:0588)
2023-01-23 00:00:00
cve
cve
CVE-2019-14894
2020-06-22 18:15:10
redhatcve
redhatcve
CVE-2019-14894
2020-02-24 08:10:57
veracode
veracode
Remote Code Execution (RCE)
2020-02-26 00:35:19
cvelist
cvelist
CVE-2019-14894
2020-06-22 17:53:52