Lucene search
+L

5 matches found

nessus
nessus
added 2022/03/24 12:0 a.m.31 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (openstack-tripleo-heat-templates) (RHSA-2022:0995)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0995 advisory. Heat templates for TripleO Security Fixes: Data leak of internal URL through keystoneauthtoken CVE-2021-4180 For more details about the security...

4.3CVSS5.2AI score0.00754EPSS
Exploits0References52
circl
circl
added 2022/03/23 11:29 p.m.8 views

CVE-2021-4180

creationtimestamp| type| source ---|---|--- 2022-03-23 23:29:10+00:00| seen| https://t.me/cibsecurity/39451...

4.3CVSS4.6AI score0.00754EPSS
Exploits0References1
redhat
redhat
added 2022/03/23 10:11 p.m.30 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (openstack-tripleo-heat-templates) security update

An update for openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

4.3CVSS5.8AI score0.00754EPSS
Exploits0References49
nvd
nvd
added 2022/03/23 8:15 p.m.73 views

CVE-2021-4180

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS0.00754EPSS
Exploits0References1
cve
cve
added 2022/03/23 7:46 p.m.158 views

CVE-2021-4180

The CVE affects openstack-tripleo-heat-templates (older than 11.6.1). The underlying issue is an information exposure: an external user can discover internal IP addresses or hostnames by inspecting the www_authenticate_uri parameter in configuration files. This data leakage is specifically tied t...

4.3CVSS4AI score0.00754EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder