Cloudforms
Approved changes feed: RSS · Atom
cpe:2.3:a:[unknown]:cloudforms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | [Unknown] (5b07108a-8f0c-5d28-ab99-c4ff62adb460) |
|---|---|
| Product | Cloudforms (f1613003-6944-5a7f-b516-2eba191e8eed) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-14894 |
vulnerable | 2026-06-03 14:39:46.795029 |
Details available
HIGH (8)
A flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root.
Published: 2020-06-22T17:53:52.000Z
Updated: 2024-08-05T00:26:39.132Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-2639 |
vulnerable | 2026-06-03 14:37:07.869299 |
Details available
MEDIUM (6.5)
It was found that CloudForms does not verify that the server hostname matches the domain name in the certificate when using a custom CA and communicating with Red Hat Virtualization (RHEV) and OpenShift. This would allow an attacker to spoof RHEV or OpenShift systems and potentially harvest sensitive information from CloudForms.
Published: 2018-07-27T13:00:00.000Z
Updated: 2024-08-05T14:02:06.927Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.