150 matches found
PYSEC-2026-437 Openstack Magnum Unsafe Credential Handling
OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances' SSL certificates, they allow full API access, though and can be used to perform any API operation the user is authorized to perform...
EUVD-2016-0035
Malware in sbrugna...
EUVD-2014-0137
Malware in sbrugna...
EUVD-2015-5300
Malware in sbrugna...
EUVD-2014-0138
Malware in sbrugna...
EUVD-2016-0034
Malware in sbrugna...
EUVD-2022-2957
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-4180
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this...
Linux Distros Unpatched Vulnerability : CVE-2021-3585
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager. CVE-2021-35...
Linux Distros Unpatched Vulnerability : CVE-2015-5303
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TripleO Heat templates tripleo-heat-templates, when deployed via the commandline interface, allow remote attackers to spoof OpenStack Networking metadata...
Linux Distros Unpatched Vulnerability : CVE-2016-7404
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances' SSL...
Linux Distros Unpatched Vulnerability : CVE-2018-10898
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in...
RHSA-2024:9978 Red Hat Security Advisory: RHOSP 17.1.4 (openstack-tripleo-heat-templates) security update
Bulletin has no description...
Moderate: Red Hat Security Advisory: RHOSP 17.1.4 (openstack-tripleo-heat-templates) security update
An update for openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform RHOSP 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
RHEL 6 : openstack-heat-templates (RHSA-2014:0579)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2014:0579 advisory. OpenStack Orchestration heat is a template-driven engine used to specify and deploy configurations for Compute, Storage, and OpenStack...
RHSA-2024:1930 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (openstack-tripleo-heat-templates and python-yaql) security update
Bulletin has no description...
RHSA-2024:1931 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-yaql and openstack-tripleo-heat-templates) security update
Bulletin has no description...
RHSA-2024:2770 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (tripleo-ansible and openstack-tripleo-heat-templates) security update
Bulletin has no description...
RHSA-2024:2736 Red Hat Security Advisory: openstack-tripleo-heat-templates and tripleo-ansible update
Bulletin has no description...
RHSA-2022:8796 Red Hat Security Advisory: Red Hat OpenStack 16.1.9 (openstack-tripleo-heat-templates) security update
Bulletin has no description...