7 matches found
Fedora 37 : python-virtualbmc (2022-471e14677d)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-471e14677d advisory. Security fix for CVE-2022-44020 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
Fedora 35 : python-virtualbmc (2022-42723b43fe)
The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-42723b43fe advisory. Security fix for CVE-2022-44020 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
Fedora 36 : python-virtualbmc (2022-72b8efd577)
The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-72b8efd577 advisory. Security fix for CVE-2022-44020 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 (python-virtualbmc) security update
An update for python-virtualbmc is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2022-44020
creationtimestamp| type| source ---|---|--- 2022-10-30 11:34:33+00:00| seen| https://t.me/cibsecurity/52275...
CVE-2022-44020
CVE-2022-44020 affects OpenStack Sushy-Tools up to 0.21.0 and VirtualBMC up to 2.2.2. The issue occurs when changing the boot device configuration, which removes password protection from the managed libvirt XML domain. This risk is disclosed as affecting an "unsupported, production-like configura...
CVE-2022-44020
An issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.2.2. Changing the boot device configuration with these packages removes password protection from the managed libvirt XML domain. NOTE: this only affects an "unsupported, production-like configuration."...