Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-vryw-dve1-f7dz
Vulnerability ID VCID-vryw-dve1-f7dz
Aliases CVE-2015-5152
Summary Foreman: API permits HTTP requests when require_ssl is enabled
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-319 Cleartext Transmission of Sensitive Information
System Score Found at
epss 0.00291 https://api.first.org/data/v1/epss?cve=CVE-2015-5152
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5152.json
https://api.first.org/data/v1/epss?cve=CVE-2015-5152
1243571 https://bugzilla.redhat.com/show_bug.cgi?id=1243571
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.52766
EPSS Score 0.00291
Published At May 29, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-29T09:57:14.820967+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5152.json 38.6.0