CVE Vulnerabilities

CVE-2014-0180

Published: Jul 07, 2014 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
5 MODERATE
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V3
Ubuntu

The wait_for_task function in app/controllers/application_controller.rb in Red Hat CloudForms 3.0 Management Engine (CFME) before 5.2.4.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Cloudforms_3.0_management_engine Redhat * 5.2.4 (including)
Cloudforms_3.0_management_engine Redhat 5.2 (including) 5.2 (including)
Cloudforms_3.0_management_engine Redhat 5.2.1 (including) 5.2.1 (including)
Cloudforms_3.0_management_engine Redhat 5.2.1.6 (including) 5.2.1.6 (including)
Cloudforms_3.0_management_engine Redhat 5.2.2 (including) 5.2.2 (including)
Cloudforms_3.0_management_engine Redhat 5.2.3 (including) 5.2.3 (including)
Cloudforms_3.0_management_engine Redhat 5.2.3.2 (including) 5.2.3.2 (including)
CloudForms Management Engine 5.x RedHat cfme-0:5.2.4.2-1.el6cf *
CloudForms Management Engine 5.x RedHat ruby193-rubygem-actionpack-1:3.2.13-8.el6cf *

References