Bug #37786: CVE-2024-7012: Authentication bypass in Foreman - Installer - Foreman

Actions

Copy link

Bug #37786

closed

CVE-2024-7012: Authentication bypass in Foreman

Added by Ewoud Kohl van Wijngaarden 4 months ago.

Status:

Resolved

Priority:

Normal

Assignee:

Category:

Foreman modules

Target version:

Foreman - 3.10.1

Difficulty:

Triaged:

Yes

Bugzilla link:

Pull request:

Fixed in Releases:

Foreman - 3.10.1, Foreman - 3.11.2, Foreman - 3.12.0

Found in Releases:

Foreman - 2.2.0

Red Hat JIRA:

Description

An authentication bypass vulnerability has been identified in Foreman when deployed by the Foreman Installer with External Authentication.

This issue arises from the way Apache is configured to do certificate authentication and pass this information to the Puma backend, without unsetting all headers coming from a possibly malicious client.

Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Foreman » Installer

Custom queries

Bug #37786

CVE-2024-7012: Authentication bypass in Foreman