CVE-2025-9572

Source
https://cve.org/CVERecord?id=CVE-2025-9572
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-9572.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-9572
Downstream
Published
2026-02-27T07:28:44.391Z
Modified
2026-07-15T01:48:58.153425479Z
Severity
  • 5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVSS Calculator
Summary
Foreman: satellite: graphql api permission bypass leads to information disclosure
Details

n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leading to an authorization bypass.

Database specific
{
    "cwe_ids": [
        "CWE-863"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/9xxx/CVE-2025-9572.json",
    "cna_assigner": "redhat"
}
References

Affected packages

Git / github.com/theforeman/foreman

Affected ranges

Type
GIT
Repo
https://github.com/theforeman/foreman
Events
Database specific
{
    "cpe": "cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "1.22.0"
        },
        {
            "fixed": "3.16.2"
        }
    ],
    "source": [
        "AFFECTED_FIELD",
        "CPE_RANGE"
    ]
}
Type
GIT
Repo
https://github.com/theforeman/foreman-installer
Events
Database specific
{
    "cpe": "cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "1.22.0"
        },
        {
            "fixed": "3.16.2"
        }
    ],
    "source": "CPE_RANGE"
}
Type
GIT
Repo
https://github.com/theforeman/smart-proxy
Events
Database specific
{
    "cpe": "cpe:2.3:a:theforeman:foreman:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "1.22.0"
        },
        {
            "fixed": "3.16.2"
        }
    ],
    "source": "CPE_RANGE"
}

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-9572.json"