CVE-2016-8639

moderate-risk

Published 2018-08-01

It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface.

Do I need to act?

0.58% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.1/10 Medium

NETWORK / LOW complexity

Affected Products (3)

Foreman

Satellite

Satellite Capsule

Affected Vendors

Redhat Theforeman

References (10)

Third Party Advisory http://www.securityfocus.com/bid/94263

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0336

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639

Third Party Advisory https://github.com/theforeman/foreman/pull/3523

Vendor Advisory https://projects.theforeman.org/issues/15037

Third Party Advisory http://www.securityfocus.com/bid/94263

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0336

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8639

Third Party Advisory https://github.com/theforeman/foreman/pull/3523

Vendor Advisory https://projects.theforeman.org/issues/15037

/ 100

moderate-risk

Severity 23/34 · High

Exploitability 2/34 · Minimal

Exposure 9/34 · Low