Lucene search
K

8 matches found

OSV
OSV
added 2026/07/07 2:34 p.m.4 views

PYSEC-2026-1750 openstack-heat may disclose sensitive information

An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command with the hidden feature set to True and the CVE-2023-1625 fix applied...

5.3CVSS5.9AI score0.0039EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-2462

Malicious code in bioql PyPI...

5CVSS6AI score0.0039EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-1625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal paramete...

7.4CVSS6.2AI score0.00709EPSS
Exploits1References3
OSV
OSV
added 2024/08/02 9:31 p.m.27 views

GHSA-2FQR-CX7Q-3PH8 openstack-heat may disclose sensitive information

An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command with the hidden feature set to True and the CVE-2023-1625 fix applied...

5.3CVSS6AI score0.0039EPSS
Exploits1References5
CVE
CVE
added 2023/09/24 12:8 a.m.99 views

CVE-2023-1625

CVE-2023-1625 affects OpenStack Heat. A disclosed information leak allows a remote, authenticated attacker to use the stack show command to reveal otherwise hidden parameters. Impact is described as low for confidentiality and low for other aspects, with exploitation tied to OpenStack Heat behavi...

7.4CVSS5.8AI score0.00709EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/24 12:8 a.m.13 views

CVE-2023-1625 Information leak in api

An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system...

7.4CVSS6.3AI score0.00709EPSS
Exploits1References4
OSV
OSV
added 2023/06/05 2:39 p.m.9 views

SUSE-SU-2023:2379-1 Security update for openstack-heat, python-Werkzeug

This update for openstack-heat, python-Werkzeug contains the following fixes: Security fixes included on this update: openstack-heat: - CVE-2023-1625: Fixed an issue where parameter values marked as 'hidden' would be shown in the stack's environment. bsc1209774 python-Werkzeug: - CVE-2023-25577:...

7.5CVSS7.5AI score0.0142EPSS
Exploits1References5
OSV
OSV
added 2023/06/05 2:38 p.m.10 views

SUSE-SU-2023:2378-1 Security update for openstack-heat, openstack-swift, python-Werkzeug

This update for openstack-heat, openstack-swift, python-Werkzeug contains the following fixes: Security fixes included in this update: openstack-heat: - CVE-2023-1625: Fixed an issue where parameter values marked as 'hidden' would be shown in the stack's environment bsc1209774. openstack-swift: -...

7.5CVSS6.9AI score0.0142EPSS
Exploits2References7
Rows per page
Query Builder