Lucene search

CVE-2017-2592

🗓️ 08 May 2018 17:00:29Reported by redhatType

python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an information disclosure

Reporter	Title	Published	Views	Family All 22
IBM Security Bulletins	Security Bulletin: IBM Spectrum Scale deployments with the Object Protocols functionality enabled are affected by a security vulnerability in Python (CVE-2017-2592)	1 Aug 201819:21	–	ibm
IBM Security Bulletins	Security Bulletin: IBM PowerVC is impacted by python oslo.middleware package information disclosure (CVE-2017-2592)	18 Jun 201800:00	–	ibm
OpenVAS	Ubuntu: Security Advisory (USN-3666-1)	5 Jun 201800:00	–	openvas
OSV	CVE-2017-2592	8 May 201817:29	–	osv
OSV	oslo.middleware Information Disclosure vulnerability	13 Jul 201815:16	–	osv
OSV	PYSEC-2018-104	8 May 201817:29	–	osv
OSV	RHSA-2017:0300 Red Hat Security Advisory: python-oslo-middleware security update	13 Sep 202413:36	–	osv
OSV	RHSA-2017:0435 Red Hat Security Advisory: python-oslo-middleware security update	13 Sep 202413:36	–	osv
Tenable Nessus	Ubuntu 16.04 LTS : Oslo middleware vulnerability (USN-3666-1)	1 Jun 201800:00	–	nessus
Tenable Nessus	RHEL 7 : python-oslo-middleware (RHSA-2017:0300)	4 Nov 202400:00	–	nessus

Nvd

Vulners

Node

openstack oslo.middlewareRange≤3.8.0

openstack oslo.middlewareRange3.9.0–3.19.0

openstack oslo.middlewareRange3.20.0–3.23.0

Node

canonical ubuntu_linuxMatch16.04lts

[
  {
    "product": "python-oslo-middleware",
    "vendor": "unspecified",
    "versions": [
      {
        "status": "affected",
        "version": "python-oslo-middleware 3.8.1"
      },
      {
        "status": "affected",
        "version": " python-oslo-middleware 3.19.1"
      },
      {
        "status": "affected",
        "version": " python-oslo-middleware 3.23.1"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugs	www.bugs.launchpad.net/keystonemiddleware/+bug/1628031
usn	www.usn.ubuntu.com/3666-1/
rhn	www.rhn.redhat.com/errata/RHSA-2017-0435.html
rhn	www.rhn.redhat.com/errata/RHSA-2017-0300.html
securityfocus	www.securityfocus.com/bid/95827
review	www.review.openstack.org/
lists	www.lists.openstack.org/pipermail/openstack-announce/2017-January/002002.html
review	www.review.openstack.org/
review	www.review.openstack.org/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 May 2018 17:29Current

4.8Medium risk

Vulners AI Score4.8

CVSS22.1

CVSS35.5 - 5.9

EPSS0.00062

CWE-532