CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 2023/05/07 1:21 a.m.•26 views

[SECURITY] Fedora 38 Update: cloud-init-23.1.2-1.fc38

Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts...

Tenable Nessus•added 2023/05/07 12:0 a.m.•14 views

Fedora 38 : cloud-init (2023-c17dde4052)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-c17dde4052 advisory. Update to 23.1.2 and fix CVE-2023-1786 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

5.5CVSS6.2AI score0.00271EPSS

Microsoft CVE•added 2023/05/02 7:0 a.m.•2 views

sensitive data exposure in cloud-init logs

...

5.5CVSS5.5AI score0.00236EPSS

Photon•added 2023/05/02 12:0 a.m.•33 views

Moderate Photon OS Security Update - PHSA-2023-5.0-0001

Updates of 'redis', 'cloud-init', 'libxml2' packages of Photon OS have been released...

6.5CVSS6.6AI score0.01013EPSS

Microsoft CVE•added 2023/05/01 7:0 a.m.•2 views

sensitive data exposure in cloud-init logs

...

5.5CVSS5.8AI score0.00271EPSS

Tenable Nessus•added 2023/05/01 12:0 a.m.•18 views

FreeBSD : cloud-init -- sensitive data exposure in cloud-init logs (02562a78-e6b7-11ed-b0ce-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 02562a78-e6b7-11ed-b0ce-b42e991fc52e advisory. - Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use th...

5.5CVSS6.2AI score0.00271EPSS

Exploits0References3

Photon•added 2023/04/28 12:0 a.m.•33 views

Moderate Photon OS Security Update - PHSA-2023-4.0-0383

Updates of 'wireshark', 'cloud-init' packages of Photon OS have been released...

6.3CVSS6.5AI score0.00569EPSS

RedhatCVE•added 2023/04/27 5:52 a.m.•34 views

CVE-2023-1786

A vulnerability was found in cloud-init. With this flaw, exposure of sensitive data is possible in world-readable cloud-init logs. This flaw allows an attacker to use this information to find hashed passwords and possibly escalate their privilege...

5.5CVSS5.8AI score0.00271EPSS

Exploits0References3

Oracle linux•added 2023/04/27 12:0 a.m.•29 views

cloud-init security update

22.1-6.0.4.el87.2 - Fix log file permissions Orabug: 35302985 22.1-6.0.3.el87.2 - Fix CVE-2023-1786 Orabug: 35302985...

5.5CVSS6.2AI score0.00271EPSS

Oracle linux•added 2023/04/27 12:0 a.m.•22 views

cloud-init security update

22.1-7.0.3.el91 - Fix log file permission Orabug: 35302969 22.1-7.0.2.el91 - Fix CVE-2023-1786 Orabug: 35302969...

Tenable Nessus•added 2023/04/27 12:0 a.m.•17 views

Oracle Linux 9 : cloud-init (ELSA-2023-12299)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-12299 advisory. 22.1-7.0.3.el91 - Fix log file permission Orabug: 35302969 22.1-7.0.2.el91 - Fix CVE-2023-1786 Orabug: 35302969 Tenable has extracted the preceding description...

Tenable Nessus•added 2023/04/27 12:0 a.m.•20 views

Oracle Linux 8 : cloud-init (ELSA-2023-12298)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-12298 advisory. 22.1-6.0.4.el87.2 - Fix log file permissions Orabug: 35302985 22.1-6.0.3.el87.2 - Fix CVE-2023-1786 Orabug: 35302985 Tenable has extracted the preceding...