A flaw was found in Red Hat Satellites Job Invocation, where the User Input entry was not properly restricted to the view. This flaw allows a malicious Satellite user to scan through the Job Invocation, with the ability to search for passwords and other sensitive data. This flaw affects tfm-rubygem-foreman_ansible versions before 4.0.3.4.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Satellite | Redhat | 6.7 (including) | 6.7 (including) |
Satellite_capsule | Redhat | 6.7 (including) | 6.7 (including) |
Foreman_ansible | Theforeman | * | 4.0.3.4 (excluding) |