CVE-2024-6861 - Foreman GraphQL API Information Disclosure Vulnerability

2 weeks ago 8
ARTICLE AD BOX
CVE ID : CVE-2024-6861
Published : Nov. 6, 2024, 3:15 p.m. | 24 minutes ago
Description : A disclosure of sensitive information flaw was found in foreman via the GraphQL API. If the introspection feature is enabled, it is possible for attackers to retrieve sensitive admin authentication keys which could result in a compromise of the entire product's API.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article