Lucene search

CVE-2016-4985

🗓️ 12 Jul 2016 19:04:59Reported by [email protected]Type

The ironic-api service in OpenStack Ironic allows remote attackers to obtain sensitive information by sending a crafted POST reques

Reporter	Title	Published	Views	Family All 14
UbuntuCve	CVE-2016-4985	12 Jul 201600:00	–	ubuntucve
Cvelist	CVE-2016-4985	12 Jul 201619:00	–	cvelist
Github Security Blog	OpenStack Ironic Exposure of Sensitive Information to an Unauthorized Actor	13 May 202201:07	–	github
OSV	Red Hat Security Advisory: openstack-ironic security update	13 Sep 202411:05	–	osv
OSV	Red Hat Security Advisory: openstack-ironic security update	13 Sep 202411:04	–	osv
Prion	Code injection	12 Jul 201619:59	–	prion
RedHat Linux	(RHSA-2016:1377) Moderate: openstack-ironic security update	4 Jul 201605:39	–	redhat
RedHat Linux	(RHSA-2016:1378) Moderate: openstack-ironic security update	4 Jul 201605:39	–	redhat
RedhatCVE	CVE-2016-4985	22 Jun 201607:48	–	redhatcve
CVE	CVE-2016-4985	12 Jul 201619:59	–	cve

Nvd

Node

redhat openstackMatch7.0

redhat openstackMatch8

Node

canonical openstack_ironicRange≤4.2.4

canonical openstack_ironicMatch5.1.0

canonical openstack_ironicMatch5.1.1

Source	Link
access	www.access.redhat.com/errata/RHSA-2016:1377
openwall	www.openwall.com/lists/oss-security/2016/06/21/6
review	www.review.openstack.org/332196
bugs	www.bugs.launchpad.net/ironic/+bug/1572796
review	www.review.openstack.org/332197
access	www.access.redhat.com/errata/RHSA-2016:1378
review	www.review.openstack.org/332195

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jul 2016 19:59Current

7.3High risk

Vulners AI Score7.3

CVSS25

CVSS37.5

EPSS0.006

CWE-200