Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-8936-44GW-7664
HistoryMay 17, 2022 - 3:56 a.m.

TripleO Heat templates might allow remote attackers to obtain sensitive information from private containers

2022-05-1703:56:29
Google
osv.dev
9
tripleo
heat templates
remote attackers
sensitive information
private containers
keystone
openstack object storage
swift
staticweb middleware

EPSS

0.003

Percentile

71.5%

JSON

The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive information from private containers via unspecified vectors.

Related

redhat 1
osv 1
cvelist 1
github 1
nvd 1
veracode 1
cve 1
ubuntucve 1
prion 1
redhat
redhat
(RHSA-2015:1862) Moderate: Red Hat Enterprise Linux OpenStack Platform 7 director update
2015-10-08 11:48:53
osv
osv
PYSEC-2016-34
2016-04-15 17:59:00
cvelist
cvelist
CVE-2015-5271
2016-04-15 17:00:00
github
github
TripleO Heat templates might allow remote attackers to obtain sensitive information from private containers
2022-05-17 03:56:29
nvd
nvd
CVE-2015-5271
2016-04-15 17:59:00
veracode
veracode
Unauthenticated Access To Private Data
2019-01-15 09:07:52
cve
cve
CVE-2015-5271
2016-04-15 17:59:00
ubuntucve
ubuntucve
CVE-2015-5271
2016-04-15 00:00:00
prion
prion
Information disclosure
2016-04-15 17:59:00

EPSS

0.003

Percentile

71.5%

JSON
Related for OSV:GHSA-8936-44GW-7664
redhat1osv1cvelist1github1nvd1veracode1cve1ubuntucve1prion1