Nixpkgs Security Tracker

Untriaged

Permalink CVE-2014-8183

created 1 month ago

It was found that foreman, versions 1.x.x before 1.15.6, in …

It was found that foreman, versions 1.x.x before 1.15.6, in Satellite 6 did not properly enforce access controls on certain resources. An attacker with access to the API and knowledge of the resource name can access resources in other organizations.

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8183 x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8183 x_refsource_CONFIRM x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8183 x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8183 x_refsource_CONFIRM x_transferred

Affected products

foreman

==1.x.x before 1.15.6

Matching in nixpkgs

pkgs.foreman

Process manager for applications with multiple components

nixos-unstable 0.87.2
- nixpkgs-unstable 0.87.2
- nixos-unstable-small 0.87.2
nixos-25.11 0.87.2
- nixos-25.11-small 0.87.2
- nixpkgs-25.11-darwin 0.87.2

Package maintainers

@zimbatm zimbatm <zimbatm@zimbatm.com>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.foreman

Package maintainers