Tomer Brisker

**Name of the Vulnerable Software and Affected Versions** Foreman versions prior to 1.20.3 Foreman versions prior to 1.21.1 Foreman versions prior to 1.22.0 **Description** The delete compute resource operation in Foreman, when executed from the Foreman API, can lead to the disclosure of the plaintext password or token for the affected compute resource. A malicious user with the `delete compute resource` permission can exploit this flaw to take control over compute resources managed by Foreman. **Recommendations** For versions prior to 1.20.3, update to version 1.20.3 or later. For versions prior to 1.21.1, update to version 1.21.1 or later. For versions prior to 1.22.0, update to version 1.22.0 or later.

**Name of the Vulnerable Software and Affected Versions** Foreman versions prior to 1.16.0 **Description** The issue allows for a stored XSS in organizations/locations assignment to hosts. This can be exploited when a user assigns hosts to an organization with HTML in its name, which is visible to the user before taking action. **Recommendations** For versions prior to 1.16.0, update to version 1.16.0 or later to resolve the issue. As a temporary workaround, consider restricting the ability to assign hosts to organizations with HTML in their names until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Foreman versions prior to 1.10.0 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via `global parameters`, `smart class parameters`, or `smart variables` in the host or hostgroup edit forms, potentially leading to cross-site scripting (XSS) attacks. **Recommendations** For versions prior to 1.10.0, update to version 1.10.0 or later to resolve the issue.