CVE-2013-0171

Name of the Vulnerable Software and Affected Versions Foreman versions prior to 1.1

Description The issue allows remote attackers to execute arbitrary code by sending a crafted YAML object to specific API endpoints, including the fact or report import API.

Recommendations For versions prior to 1.1, update to version 1.1 or later to resolve the issue.