Lucene search
+L

569 matches found

redhat
redhat
added 2017/03/01 1:31 p.m.35 views

Moderate: Red Hat Security Advisory: openstack-puppet-modules security update

An update for openstack-puppet-modules is now available for Red Hat OpenStack Platform 8.0 Liberty. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

6.5CVSS6.5AI score0.01152EPSS
Exploits0References2
redhat
redhat
added 2017/01/26 4:41 p.m.7 views

puppet-swift: installs config file with world readable permissions

An information-disclosure flaw was discovered in Red Hat OpenStack Platform director's installation of Object Storage swift. During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions...

6.5CVSS5.8AI score0.01152EPSS
Exploits0References4
redhat
redhat
added 2017/01/26 4:41 p.m.61 views

Moderate: Red Hat Security Advisory: puppet-swift security update

An update for puppet-swift is now available for Red Hat OpenStack Platform 10.0 Newton. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.5AI score0.01152EPSS
Exploits0References2
veeam
veeam
added 2016/10/06 12:0 a.m.26 views

Name of Backups Entry Does Not Match Job Name

Challenge The name of the backup job has been changed, causing entries found under the Backups node to no longer match their associated job. In the example screenshot above, the job was first run with the name "Backup Job 1," and after the initial run, the job was renamed to "DC Backup." The...

6.8AI score
Exploits0Affected Software1
redhat
redhat
added 2016/09/29 1:11 p.m.7 views

ceph: RGW permits bucket listing when authenticated_users=read

A flaw was found in Ceph RGW code which allows an anonymous user to list contents of RGW bucket by bypassing ACL which should only allow authenticated users to list contents of bucket...

7.5CVSS5.8AI score0.01751EPSS
Exploits1References4
fedora
fedora
added 2016/09/27 12:55 a.m.39 views

[SECURITY] Fedora 25 Update: mongodb-3.2.8-2.fc25

Mongo from "humongous" is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the follow ing features: Collection oriented storage: easy storage of object/JSON-style data Dynamic queries Full index support, including on inner objects and...

5.5CVSS0.3AI score0.0037EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2016/07/06 12:0 a.m.4 views

Vulnerability of PHP software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information

The vulnerability exists in the PHP SPL component due to an incorrect definition of what happens after data structures are deallocated. This allows malicious actors who operate remotely to execute arbitrary code using a specially crafted string, thereby triggering the use of hash tables’...

7.5CVSS8AI score0.30128EPSS
Exploits4References4Affected Software1
openvas
openvas
added 2016/05/18 12:0 a.m.24 views

Debian Security Advisory DSA 3583-1 (swift-plugin-s3 - security update)

It was discovered that the swift3 S3 compatibility middleware plugin for Swift performed insufficient validation of date headers which might result in replay attacks. OpenVAS Vulnerability Test $Id: deb3583.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA 3583-1 using...

5.8CVSS0.02013EPSS
Exploits0References1
prion
prion
added 2016/04/15 5:59 p.m.19 views

Information disclosure

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

5CVSS6.6AI score0.02415EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2016/04/15 5:59 p.m.36 views

CVE-2015-5271

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

7.5CVSS7.2AI score0.02415EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2016/04/15 5:59 p.m.24 views

CVE-2015-5271

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

7.5CVSS7.1AI score0.02415EPSS
Exploits0References1
osv
osv
added 2016/04/15 5:59 p.m.37 views

PYSEC-2016-34

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

7.5CVSS4.6AI score0.02415EPSS
Exploits0References5
cvelist
cvelist
added 2016/04/15 5:0 p.m.46 views

CVE-2015-5271

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

7.2AI score0.02415EPSS
Exploits0References4
nessus
nessus
added 2016/03/02 12:0 a.m.37 views

RHEL 7 : Storage Server (RHSA-2016:0328)

Updated openstack-swift packages that fix two security issues are now available for Red Hat Gluster Storage 3.1 update 2 in Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

7.5CVSS7.1AI score0.0382EPSS
Exploits0References7
nessus
nessus
added 2016/03/02 12:0 a.m.28 views

RHEL 6 : Storage Server (RHSA-2016:0329)

Updated openstack-swift packages that fix two security issues are now available for Red Hat Gluster Storage 3.1 update 2 in Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

7.5CVSS7.1AI score0.0382EPSS
Exploits0References7
redhat
redhat
added 2016/03/01 7:2 a.m.26 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix two security issues are now available for Red Hat Gluster Storage 3.1 update 2 in Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

7.5CVSS7AI score0.0382EPSS
Exploits0References3
redhat
redhat
added 2016/03/01 7:1 a.m.35 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix two security issues are now available for Red Hat Gluster Storage 3.1 update 2 in Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

7.5CVSS7AI score0.0382EPSS
Exploits0References3
redhat
redhat
added 2016/03/01 7:1 a.m.5 views

openstack-swift: Proxy to server DoS through Large Objects

A memory-leak issue was found in OpenStack Object Storage swift, in the proxy-to-server connection. An OpenStack-authenticated attacker could remotely trigger this flaw to cause denial of service through excess memory consumption...

7.5CVSS5.7AI score0.0382EPSS
Exploits0References4
redhat
redhat
added 2016/02/09 8:56 p.m.28 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 7.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS7AI score0.0382EPSS
Exploits0References3
redhat
redhat
added 2016/02/08 4:35 a.m.42 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for RHEL 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS7AI score0.0382EPSS
Exploits0References3
Rows per page
Query Builder