Lucene search
K

9 matches found

Debian CVE
Debian CVE
added 2023/01/18 12:0 a.m.26 views

CVE-2022-3100

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API...

5.9CVSS6.1AI score0.00433EPSS
Exploits0
CVE
CVE
added 2023/01/18 12:0 a.m.135 views

CVE-2022-3100

The CVE-2022-3100 issue affects the openstack-barbican component and enables an access policy bypass via a query string when calling the API. This vulnerability is discussed across multiple sources, with explicit confirmation in the SUSE-SU-2023:0071-1 security update: openstack-barbican Fixes CV...

5.9CVSS5.4AI score0.00433EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/01/11 2:41 p.m.7 views

SUSE-SU-2023:0071-1 Security update for openstack-barbican

This update for openstack-barbican contains the following fix: Security fix included on this update: openstack-barbican: - CVE-2022-3100: Fixed an access policy bypass via query string injection bsc1203873. Update for openstack-barbican: - Add patch for CVE-2022-3100 to address access policy bypa...

5.9CVSS6.4AI score0.00433EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/10/26 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-5697-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.7AI score0.00433EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.41 views

Debian dla-3136 : barbican-api - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3136 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3136-1 [email protected] https://www.debian.org/lts/security/...

5.9CVSS6.3AI score0.00433EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.44 views

Debian DSA-5247-1 : barbican - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5247 advisory. - openstack-barbican: access policy bypass via query string injection CVE-2022-3100 Note that Nessus has not tested for this issue but has instead relied only on the...

5.9CVSS6.3AI score0.00433EPSS
Exploits0References6
Debian
Debian
added 2022/10/04 7:9 p.m.44 views

[SECURITY] [DSA 5247-1] barbican security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5247-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 04, 2022 https://www.debian.org/security/faq -...

5.9CVSS5.6AI score0.00433EPSS
Exploits0
Debian
Debian
added 2022/10/04 7:57 a.m.49 views

[SECURITY] [DLA 3136-1] barbican security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3136-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 04, 2022 https://wiki.debian.org/LTS -...

5.9CVSS5.5AI score0.00433EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/10/03 12:0 a.m.45 views

RHEL 7 / 8 / 9 : Red Hat OpenStack Platform (openstack-barbican) (RHSA-2022:6750)

The remote Redhat Enterprise Linux 7 / 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6750 advisory. Barbican is a ReST API designed for the secure storage, provisioning and management of secrets, including in OpenStack environments. Security...

5.9CVSS6.4AI score0.00433EPSS
Exploits0References4
Rows per page
Query Builder