The Smart-Proxy in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter to tftp/fetch_boot_file.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Foreman | Theforeman | * | 1.4.4 (including) |
Foreman | Theforeman | 1.4.0 (including) | 1.4.0 (including) |
Foreman | Theforeman | 1.4.1 (including) | 1.4.1 (including) |
Foreman | Theforeman | 1.4.2 (including) | 1.4.2 (including) |
Foreman | Theforeman | 1.4.3 (including) | 1.4.3 (including) |
Foreman | Theforeman | 1.5.0 (including) | 1.5.0 (including) |