CVE-2020-10716 - OpenCVE

A flaw was found in Red Hat Satellite's Job Invocation, where the "User Input" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects tfm-rubygem-foreman_ansible versions before 4.0.3.4.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:L/Au:S/C:P/I:N/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Redhat	Satellite Satellite Capsule
Theforeman	Foreman Ansible

Configuration 1 [-]

OR	cpe:2.3:a:redhat:satellite:6.7:::::::*
	cpe:2.3:a:redhat:satellite_capsule:6.7:::::::*
	cpe:2.3:a:theforeman:foreman_ansible::::::ruby::*

References

Link	Resource
https://bugzilla.redhat.com/show_bug.cgi?id=1814998	Issue Tracking Permissions Required Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1827300	Issue Tracking Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2021-05-27T18:46:07

Updated: 2021-05-27T18:46:07

Reserved: 2020-03-20T00:00:00

Link: CVE-2020-10716

JSON object: View

NVD Information

Status : Analyzed

Published: 2021-05-27T19:15:07.843

Modified: 2022-10-21T17:58:00.813

Link: CVE-2020-10716

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "rubygem-foreman_ansible", "vendor": "n/a", "versions": [{"status": "affected", "version": "tfm-rubygem-foreman_ansible 4.0.3.4"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Red Hat Satellite's Job Invocation, where the \"User Input\" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects tfm-rubygem-foreman_ansible versions before 4.0.3.4."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-285", "description": "CWE-285", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-05-27T18:46:07", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827300"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1814998"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2020-10716", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "rubygem-foreman_ansible", "version": {"version_data": [{"version_value": "tfm-rubygem-foreman_ansible 4.0.3.4"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A flaw was found in Red Hat Satellite's Job Invocation, where the \"User Input\" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects tfm-rubygem-foreman_ansible versions before 4.0.3.4."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-285"}]}]}, "references": {"reference_data": [{"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1827300", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827300"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1814998", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1814998"}]}}}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2020-10716", "datePublished": "2021-05-27T18:46:07", "dateReserved": "2020-03-20T00:00:00", "dateUpdated": "2021-05-27T18:46:07", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:redhat:satellite:6.7:*:*:*:*:*:*:*", "matchCriteriaId": "92A1C228-CEEE-4F06-B87D-77510FB76A7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:satellite_capsule:6.7:*:*:*:*:*:*:*", "matchCriteriaId": "2D6E5001-53B0-4EBB-B51E-D44BF39016E8", "vulnerable": true}, {"criteria": "cpe:2.3:a:theforeman:foreman_ansible:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "BAC68EA8-8682-4937-BE4E-91B576C80E33", "versionEndExcluding": "4.0.3.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Red Hat Satellite's Job Invocation, where the \"User Input\" entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects tfm-rubygem-foreman_ansible versions before 4.0.3.4."}, {"lang": "es", "value": "Se encontr\u00f3 un fallo en Job Invocation de Red Hat Satellite, donde la entrada \"User Input\" no estaba restringida apropiadamente a la visualizaci\u00f3n. Este fallo permite a un usuario de Satellite malicioso escanear por medio del Job Invocation, con la capacidad de buscar contrase\u00f1as y otros datos confidenciales. Este fallo afecta a tfm-rubygem-foreman_ansible versiones anteriores a 4.0.3.4"}], "id": "CVE-2020-10716", "lastModified": "2022-10-21T17:58:00.813", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-05-27T19:15:07.843", "references": [{"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Permissions Required", "Vendor Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1814998"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Vendor Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827300"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-285"}], "source": "secalert@redhat.com", "type": "Secondary"}]}