Lucene search
K

4 matches found

CVE
CVE
added 2023/09/20 7:6 p.m.125 views

CVE-2022-3596

CVE-2022-3596 affects OpenStack Platform’s undercloud (instack-undercloud) and is caused by an information disclosure where the rsync daemon can leak data to the undercloud. This unauthenticated, remote-access flaw may allow attackers to inspect sensitive data, including administrator credentials...

7.5CVSS7.3AI score0.01107EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.23 views

RHEL 7 : Red Hat OpenStack Platform 13.0 (instack-undercloud) (RHSA-2022:8897)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8897 advisory. Installation tools to install an undercloud via instack Security Fixes: instack-undercloud: rsync leaks information to undercloud CVE-2022-3596 For...

7.5CVSS7.4AI score0.01107EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/12/08 10:57 a.m.42 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 (instack-undercloud) security update

An update for instack-undercloud is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.01107EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/12/06 5:31 p.m.30 views

CVE-2022-3596

An information leak was found in OpenStack's undercloud. This flaw allows unauthenticated, remote attackers to inspect sensitive data after discovering the IP address of the undercloud, possibly leading to compromising private information, including administrator access credentials. Mitigation Th...

7.5CVSS2.6AI score0.01107EPSS
Exploits0References3
Rows per page
Query Builder