CVE-2020-25716

Name of the Vulnerable Software and Affected Versions: Cloudforms versions prior to 5.11.10.1

Description: A role-based privileges escalation flaw exists, allowing the export or import of administrator files. This enables an attacker with a specific group to perform actions restricted to system administrators, affecting data confidentiality and integrity.

Recommendations: For versions prior to 5.11.10.1, update to version 5.11.10.1 or later to resolve the issue. As a temporary workaround, consider restricting access to administrator files and limiting the privileges of specific groups to minimize the risk of exploitation.