CVE-2017-2662

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/08/2018
Last modified:
12/02/2023

Description

A flaw was found in Foreman's katello plugin version 3.4.5. After setting a new role to allow restricted access on a repository with a filter (filter set on the Product Name), the filter is not respected when the actions are done via hammer using the repository id.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:theforeman:katello:3.4.5:*:*:*:*:*:*:*