HIGH🇵🇱 Wersja polska

CVE-2026-12112

CVSS 7.8v3.1pub. 2026-06-23upd. 2026-07-01

A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administrative sessions due to an improper cache of authenticated client connections, by trusting a non-secret session ID without re-validating authentication tokens and by logging all newly created session IDs to standard logs. This issue can result in privilege escalation and infrastructure-wide code execution.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Red Hat Satellite

    APP
    Redhat
    6.19
  • Theforeman Foreman

    APP
    Theforeman
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEAuth BypassLPE
CWE
References

Related vulnerabilities

CVE-2016-3427CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...

CVE-2015-2590CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows re...

CVE-2024-7923CRITICAL9.8PL ✓ten sam produkt

Authentication bypass w Pulpcore/Red Hat Satellite przez nagłówek HTTP

CVE-2024-7012CRITICAL9.8PL ✓ten sam produkt

Authentication Bypass w Foreman/Red Hat Satellite via zniekształcony nagłówek HTTP

CVE-2023-0118CRITICAL9.1ten sam produkt

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in t...