CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command wit...

7.4CVSS6.3AI score0.00392EPSS

Exploits1References3

Tenable Nessus•added 2025/08/19 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-10898

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in...

8.8CVSS7.7AI score0.00168EPSS

Exploits0References2

Tenable Nessus•added 2025/06/16 12:0 a.m.•6 views

TencentOS Server 4: openstack-heat (TSSA-2024:0810)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0810 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.4CVSS6.3AI score0.00111EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 11:13 p.m.•0 views

CVE-2022-36911

A cross-site request forgery CSRF vulnerability in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers to connect to an attacker-specified URL...

6.5CVSS6.5AI score0.00071EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 10:11 p.m.•8 views

CVE-2022-36912

A missing permission check in Jenkins Openstack Heat Plugin 1.5 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL...

4.3CVSS6.6AI score0.00292EPSS

Exploits0References1

Tenable Nessus•added 2025/03/05 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2023-1625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal paramete...

7.4CVSS6.2AI score0.00111EPSS

Exploits1References3

Tenable Nessus•added 2024/11/04 12:0 a.m.•8 views

RHEL 7 : openstack-heat (RHSA-2017:1450)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:1450 advisory. OpenStack Orchestration heat is a template-driven engine used to specify and deploy configurations for Compute, Storage, and OpenStack Networking. Th...

4.3CVSS5.2AI score0.00527EPSS

Exploits0References7