A flaw was found in the CloudForms management engine version 5.10 and CloudForms management version 5.11, which triggered remote code execution through NFS schedule backup. An attacker logged into the management console could use this flaw to execute arbitrary shell commands on the CloudForms server as root.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2020-06-22T17:53:52
Updated: 2024-08-05T00:26:39.132Z
Reserved: 2019-08-10T00:00:00
Link: CVE-2019-14894
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-06-22T18:15:10.900
Modified: 2024-11-21T04:27:37.830
Link: CVE-2019-14894
Redhat