46 matches found
Information Disclosure
cloud-init is vulnerable to information disclosure. The vulnerability exists as ccsetpassword in config/ccsetpasswords.py accepts a password with weak length...
Cloud-init Security Feature Issue Vulnerability
Cloud-init is a virtual machine initialization tool for cloud platforms. A security vulnerability exists in cloud-init version 19.4 and earlier, which stems from a call to the 'random.choice' function by randstr in the cloudinit/util.py file. An attacker could use this vulnerability to guess a...
CVE-2012-6639
An privilege elevation vulnerability exists in Cloud-init before 0.7.0 when requests to an untrusted system are submitted for EC2 instance data...
The vulnerability of the package for configuring the cloud-init process in Linux operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the cloud-init configuration package for Linux operating systems is related to an error in the handling of authentication keys controlled by the user. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected...
HDF5 Divide by Zero Error Vulnerability
HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A security vulnerability exists in the 'H5Dchunkinit' function in the H5Dchunk.c file in HDF5 version 1.10.2. A remote attacker...
security flaw
PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...