Foreman Arbitrary Code Execution Vulnerability

Foreman Arbitrary Code Execution Vulnerability

CVE-2023-0118 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

An arbitrary code execution flaw was found in Foreman. This flaw allows an admin user to bypass safe mode in templates and execute arbitrary code on the underlying operating system.

Learn more about our User Device Pen Test.