← Back

Cloudforms 3.0.5 Management Engine

cloudforms_3.0.5_management_engine

Vendor: Redhat • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-3642
1Redhat
6Cloudforms 3.0.1 Management Engine
Cloudforms 3.0.2 Management EngineCloudforms 3.0.3 Management Engine+3 more
May 6, 2026
Oct 6, 2014
N/A· v4
N/A· v3
6.5 MEDIUM· v2
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecu...Show more
vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to gain privileges via unspecified vectors, related to an "insecure send method."Show less
CVE-2014-0140
1Redhat
6Cloudforms 3.0.1 Management Engine
Cloudforms 3.0.2 Management EngineCloudforms 3.0.3 Management Engine+3 more
May 6, 2026
Oct 6, 2014
N/A· v4
N/A· v3
4.0 MEDIUM· v2
Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.