Bug #31937
closed
CVE-2021-20256 foreman: BMC controller credential leak via API
Added by Evgeni Golov about 4 years ago.
Updated about 4 years ago.
Description
A password leak was identified on Foreman which will expose BMC password in plaintext through the host API.
- Subject changed from CVE-2021-20256 foreman: BMC controller credential leak via API
to CVE-2021-20256 foreman: BMC controller credential leak via API
- Assignee set to Evgeni Golov
- Target version set to 2.4.0
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/8349 added
- Fixed in Releases 2.5.0 added
- Status changed from Ready For Testing to Closed
- Target version changed from 2.4.0 to 2.5.0
Also available in: Atom
PDF
Updated by 
Updated by 
Updated by