Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine (CFME) 5.1 and ManageIQ Enterprise Virtualization Manager 5.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the profile[] parameter in an explorer action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat CloudForms Management Engine SQL注入漏洞
Vulnerability Description
Red Hat CloudForms和Red Hat都是美国红帽(Red Hat)公司的产品。Red Hat CloudForms是一套混合基础架构管理平台。该平台可跨越虚拟机、云、容器和物理基础架构,为用户提供部署、管理等功能。Red Hat是一个操作系统。提供了一个开源的操作系统。 Red Hat CloudForms Management Engine 5.1版本存在SQL注入漏洞。远程攻击者可借助explorer操作的参数利用该漏洞执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A