Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2016-7040
HistoryOct 04, 2016 - 5:17 p.m.

CVE-2016-7040

2016-10-0417:17:27
redhat.com
access.redhat.com
9

0.004 Low

EPSS

Percentile

72.4%

JSON

An input validation flaw was found in the way CloudForms regular expressions were passed to the expression engine via both the JSON API and the web based UI. A user with the ability to view collections and filter them could use this flaw to execute arbitrary shell commands on the host with the privileges of the CloudForms process.

Related

cvelist 1
nvd 1
cve 1
redhat 1
veracode 1
prion 1
cvelist
cvelist
CVE-2016-7040
2016-10-07 14:00:00
nvd
nvd
CVE-2016-7040
2016-10-07 14:59:07
cve
cve
CVE-2016-7040
2016-10-07 14:59:07
redhat
redhat
(RHSA-2016:1996) Important: CFME 4.1 bug fixes and enhancement update
2016-10-04 14:14:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:13:40
prion
prion
Design/Logic Flaw
2016-10-07 14:59:00

0.004 Low

EPSS

Percentile

72.4%

JSON
Related for RH:CVE-2016-7040
cvelist1nvd1cve1redhat1veracode1prion1