CVE-2020-10779

Summary

Red Hat CloudForms 4.7 and 5 leads to insecure direct object references (IDOR) and functional level access control bypass due to missing privilege check. Therefore, if an attacker knows the right criteria, it is possible to access some sensitive data within the CloudForms.

Affected Software

VendorProductVersion RangeStatus
n/aCloudForms4.7 and 5affected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References