Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Red Hat CloudForms Management Engine 操作系统命令注入漏洞
Vulnerability Description
Red Hat CloudForms Management Engine(CFME)是美国红帽(Red Hat)公司的一个IaaS(基础设施即服务)云服务解决方案的管理引擎。 Red Hat CloudForms Management Engine 5.10版本和5.11版本中存在操作系统命令注入漏洞。攻击者可利用该漏洞以root用户身份执行任意的shell命令。
CVSS Information
N/A
Vulnerability Type
N/A