9 matches found
CVE-2022-3100
The CVE-2022-3100 issue affects the openstack-barbican component and enables an access policy bypass via a query string when calling the API. This vulnerability is discussed across multiple sources, with explicit confirmation in the SUSE-SU-2023:0071-1 security update: openstack-barbican Fixes CV...
CVE-2022-3100
A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API...
SUSE-SU-2023:0071-1 Security update for openstack-barbican
This update for openstack-barbican contains the following fix: Security fix included on this update: openstack-barbican: - CVE-2022-3100: Fixed an access policy bypass via query string injection bsc1203873. Update for openstack-barbican: - Add patch for CVE-2022-3100 to address access policy bypa...
Ubuntu: Security Advisory (USN-5697-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3136 : barbican-api - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3136 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3136-1 [email protected] https://www.debian.org/lts/security/...
Debian DSA-5247-1 : barbican - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5247 advisory. - openstack-barbican: access policy bypass via query string injection CVE-2022-3100 Note that Nessus has not tested for this issue but has instead relied only on the...
[SECURITY] [DSA 5247-1] barbican security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5247-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 04, 2022 https://www.debian.org/security/faq -...
[SECURITY] [DLA 3136-1] barbican security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3136-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 04, 2022 https://wiki.debian.org/LTS -...
RHEL 7 / 8 / 9 : Red Hat OpenStack Platform (openstack-barbican) (RHSA-2022:6750)
The remote Redhat Enterprise Linux 7 / 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6750 advisory. Barbican is a ReST API designed for the secure storage, provisioning and management of secrets, including in OpenStack environments. Security...