CVE-2017-2664

Posted on 2018년 7월 26일2018년 7월 27일 by admin

CVE-2017-2664

CloudForms Management Engine (cfme) before 5.7.3 and 5.8.x before 5.8.1 lacks RBAC controls on certain methods in the rails application portion of CloudForms. An attacker with access could use a variety of methods within the rails application portion of CloudForms to escalate privileges.

Source: CVE-2017-2664

답글 남기기 응답 취소