CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

111 matches found

Tenable Nessus•added 2020/10/29 12:0 a.m.•29 views

RHEL 8 : openstack-cinder (RHSA-2020:4283)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4283 advisory. OpenStack Block Storage cinder manages block storage mounting and the presentation of such mounted block storage to instances. The backend physical...

6.5CVSS6.4AI score0.01203EPSS

Exploits0References12

Tenable Nessus•added 2020/10/29 12:0 a.m.•18 views

RHEL 7 : openstack-cinder (RHSA-2020:4391)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4391 advisory. OpenStack Block Storage cinder manages block storage mounting and the presentation of such mounted block storage to instances. The backend physical...

6.5CVSS6.4AI score0.01203EPSS

Exploits0References11

RedHat Linux•added 2020/10/28 6:24 p.m.•2 views

openstack-cinder: Improper handling of ScaleIO backend credentials

An insecure-credentials flaw was found in openstack-cinder. When using openstack-cinder with the Dell EMC ScaleIO or VxFlex OS backend storage driver, credentials for the entire backend are exposed in the connectioninfo element in all Block Storage v3 Attachments API calls containing that element...

6.5CVSS7AI score0.01203EPSS

Exploits0References6

RedHat Linux•added 2020/10/28 6:24 p.m.•51 views

Moderate: Red Hat Security Advisory: openstack-cinder security update

An update for OpenStack Block Storage cinder is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

6.5CVSS6.6AI score0.01203EPSS

Exploits0References8

RedHat Linux•added 2020/10/28 3:38 p.m.•0 views

openstack-cinder: Improper handling of ScaleIO backend credentials

6.5CVSS7AI score0.01203EPSS

Exploits0References6

RedHat Linux•added 2020/10/28 3:38 p.m.•44 views

Moderate: Red Hat Security Advisory: openstack-cinder security update

An update for openstack-cinder is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.01203EPSS

Exploits0References9

Tenable Nessus•added 2020/07/08 12:0 a.m.•25 views

Ubuntu 18.04 LTS / 20.04 LTS : Cinder and os-brick vulnerability (USN-4420-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4420-1 advisory. David Hill and Eric Harney discovered that Cinder and os-brick incorrectly handled ScaleIO backend credentials. An attacker could possibly use this...

6.5CVSS6.5AI score0.01203EPSS

Exploits0References2

Ubuntu•added 2020/07/07 1:51 p.m.•58 views

USN-4420-1: Cinder and os-brick vulnerability

David Hill and Eric Harney discovered that Cinder and os-brick incorrectly handled ScaleIO backend credentials. An attacker could possibly use this issue to expose sensitive information...

6.5CVSS6.5AI score0.01203EPSS

Exploits0

OSV•added 2020/07/07 1:51 p.m.•7 views

USN-4420-1 cinder, python-os-brick vulnerability

David Hill and Eric Harney discovered that Cinder and os-brick incorrectly handled ScaleIO backend credentials. An attacker could possibly use this issue to expose sensitive information...

6.5CVSS6.7AI score0.01203EPSS

Exploits0References2

OSV•added 2020/06/10 5:15 p.m.•1 views

DEBIAN-CVE-2020-10755

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

6.5CVSS6.2AI score0.01203EPSS

Exploits0References1

UbuntuCve•added 2020/06/10 5:15 p.m.•23 views

CVE-2020-10755

6.5CVSS6.7AI score0.01203EPSS

Exploits0References3

PyPA•added 2020/06/10 5:15 p.m.•6 views

PYSEC-2020-228

6.5CVSS6.8AI score0.01203EPSS

Exploits0References3Affected Software1

Prion•added 2020/06/10 5:15 p.m.•17 views

Default credentials

4.3CVSS6.3AI score0.01203EPSS

Exploits0References3Affected Software2

OSV•added 2020/06/10 5:15 p.m.•1 views

UBUNTU-CVE-2020-10755

6.5CVSS6.6AI score0.01203EPSS

Exploits0References4

CVE•added 2020/06/10 3:55 p.m.•87 views

CVE-2020-10755

OpenStack Cinder CVE-2020-10755 affects multiple OpenStack Cinder releases prior to specific upgrades (14.1.0 for 14.x, 15.2.0 for 15.x, 16.1.0 for 16.x) when using Dell EMC ScaleIO or VxFlex OS backends. The vulnerability exposes backend credentials in the connection_info of Block Storage v3 Att...

6.5CVSS6.2AI score0.01203EPSS

Exploits0References3Affected Software1

Cvelist•added 2020/06/10 3:55 p.m.•18 views

CVE-2020-10755

6.5CVSS6.3AI score0.01203EPSS

Exploits0References3

Debian CVE•added 2020/06/10 3:55 p.m.•25 views

CVE-2020-10755

6.5CVSS6.9AI score0.01203EPSS

Exploits0

RedhatCVE•added 2020/06/03 11:22 p.m.•22 views

CVE-2020-10755

4.3CVSS0.9AI score0.01203EPSS

Exploits0References4

Veracode•added 2019/05/02 5:51 a.m.•17 views

Arbitrary Code Execution

Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.6.1. See the following advisory for the container imag...

8.8CVSS8.7AI score0.01608EPSS

Exploits0References18Affected Software10

Veracode•added 2019/05/02 5:51 a.m.•16 views

Information Disclosure

7.5CVSS7.5AI score0.01608EPSS

Exploits0References18Affected Software10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by