PT-2026-54787 · Foreman · Foreman

Stanislav Fot

·

Published

2026-07-01

·

Updated

2026-07-02

·

CVE-2026-5138

CVSS v3.1

4.3

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Foreman (affected versions not specified)
Description An authenticated user with host-edit permissions can exploit a cross-tenant information disclosure flaw. The issue exists because the taxonomy scope controller method fails to properly validate organization and location IDs within nested request parameters, which bypasses authorization checks. This allows an attacker to leak sensitive infrastructure metadata from unauthorized organizations and locations, including subnet topology, IP ranges, gateways, DNS servers, and VLAN IDs.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-5138
RHSA-2026:34365
RHSA-2026:34366
RHSA-2026:34368

Affected Products

Foreman