CVE-2014-7814 Information

Description

SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter.

Reference

http://rhn.redhat.com/errata/RHSA-2015-0028.html http://secunia.com/advisories/62255