A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administrative sessions due to an improper cache of authenticated client connections, by trusting a non-secret session ID without re-validating authentication tokens and by logging all newly created session IDs to standard logs. This issue can result in privilege escalation and infrastructure-wide code execution.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HRed Hat Satellite
APPRedhat6.19Theforeman Foreman
APPTheforemanwszystkie wersje
Powiązane podatności
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows re...
Authentication bypass w Pulpcore/Red Hat Satellite przez nagłówek HTTP
Authentication Bypass w Foreman/Red Hat Satellite via zniekształcony nagłówek HTTP
An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in t...