CVE-2014-0180

Name of the Vulnerable Software and Affected Versions Red Hat CloudForms versions prior to 5.2.4.2

Description The issue allows remote attackers to cause a denial of service, resulting in an infinite loop and CPU consumption. This is due to a problem in the wait for task function.

Recommendations For versions prior to 5.2.4.2, update to version 5.2.4.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the wait for task function in app/controllers/application controller.rb to minimize the risk of exploitation.