CVE-2014-0140 Information

Description

Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows remote authenticated users to access sensitive controllers and actions via a direct HTTP or HTTPS request.

Reference

http://rhn.redhat.com/errata/RHSA-2014-1317.html https://bugzilla.redhat.com/show_bug.cgi?id=1077359