Lucene search
K

59 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.15 views

RHEL 7 : openstack-tripleo-common (RHSA-2019:1742)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1742 advisory. openstack-tripleo-common contains the python library for code common to the Red Hat OpenStack Platform director CLI and GUI codename tripleo. Securit...

8CVSS6.7AI score0.01421EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.22 views

RHEL 7 : openstack-tripleo-heat-templates (RHSA-2018:2214)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2214 advisory. openstack-tripleo-heat-templates is a collection of OpenStack Orchestration templates and tools codename heat, which can be used to help deploy...

8.8CVSS7.8AI score0.0087EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2024/01/16 2:36 p.m.30 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (openstack-tripleo-common) security update

An update for openstack-tripleo-common is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.22 views

RHEL 8 : Red Hat OpenStack 16.1.9 (openstack-tripleo-heat-templates) (RHSA-2022:8796)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:8796 advisory. Heat templates for TripleO Security Fixes: data leak of internal URL through keystoneauthtoken CVE-2021-4180 Other fixes: Before this update, NTP...

4.3CVSS5.3AI score0.00754EPSS
Exploits0References36
NVD
NVD
added 2022/08/26 4:15 p.m.27 views

CVE-2021-3585

A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS0.00244EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2022/08/26 4:15 p.m.4 views

CVE-2021-3585

A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS5.3AI score0.00244EPSS
Exploits1References6
OSV
OSV
added 2022/08/26 4:15 p.m.29 views

UBUNTU-CVE-2021-3585

A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS5.7AI score0.00244EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/26 12:0 a.m.5 views

openstack-tripleo-heat-templates 安全漏洞

openstack-tripleo-heat-templates is a set of templates and tools for building Heat templates for OpenStack deployment. A security vulnerability exists in openstack-tripleo-heat-templates that stems from the presence of plain passwords from RHSM in its logs during the deployment of OSP13 using...

5.5CVSS6.8AI score0.00244EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2022/08/26 12:0 a.m.4 views

PT-2022-10474 · Openstack · Openstack-Tripleo-Heat-Templates

Name of the Vulnerable Software and Affected Versions: openstack-tripleo-heat-templates affected versions not specified Description: A flaw was found in openstack-tripleo-heat-templates where plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS5.2AI score0.00244EPSS
Exploits1References11
Veracode
Veracode
added 2022/06/02 12:41 a.m.22 views

Information Disclosure

openstack-tripleo-heat-templates is vulnerable to information disclosure. The vulnerability exists due to lack of santization allowing an attacker to discover the internal IP or hostname through the wwwauthenticateuri parameter configuration files...

4.3CVSS1.3AI score0.00754EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/03/24 12:0 a.m.43 views

GHSA-HM3X-JWWF-JPR9 Exposure of Sensitive Information to an Unauthorized Actor in OpenStack tripleo-heat-templates

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS4.1AI score0.00754EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/03/23 8:15 p.m.6 views

CVE-2021-4180

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS5.4AI score0.00754EPSS
Exploits0References2
OSV
OSV
added 2022/03/23 8:15 p.m.5 views

CVE-2021-4180

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS5.8AI score0.00754EPSS
Exploits0References1
NVD
NVD
added 2022/03/23 8:15 p.m.70 views

CVE-2021-4180

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS0.00754EPSS
Exploits0References1
Prion
Prion
added 2022/03/23 8:15 p.m.17 views

Information disclosure

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4CVSS4.1AI score0.00754EPSS
Exploits0References1Affected Software2
OSV
OSV
added 2022/03/23 8:15 p.m.4 views

UBUNTU-CVE-2021-4180

An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the wwwauthenticateuri parameter which is visible to all end users in configuration files. This would give sensitive...

4.3CVSS5.8AI score0.00754EPSS
Exploits0References3
CVE
CVE
added 2022/03/23 7:46 p.m.157 views

CVE-2021-4180

The CVE affects openstack-tripleo-heat-templates (older than 11.6.1). The underlying issue is an information exposure: an external user can discover internal IP addresses or hostnames by inspecting the www_authenticate_uri parameter in configuration files. This data leakage is specifically tied t...

4.3CVSS4AI score0.00754EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2020/08/11 1:20 p.m.42 views

Important: Red Hat Security Advisory: python-paunch and openstack-tripleo-heat-templates security update

An update for python-paunch and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 15 Stein. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

9.9CVSS7.3AI score0.00889EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/08/11 1:19 p.m.44 views

Important: Red Hat Security Advisory: python-paunch and openstack-tripleo-heat-templates security update

An update for python-paunch and openstack-tripleo-heat-templates is now available for Red Hat OpenStack Platform 16.0 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.9CVSS7.3AI score0.00889EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/11 12:0 a.m.29 views

RHEL 8 : python-paunch and openstack-tripleo-heat-templates (RHSA-2020:3406)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3406 advisory. Library and utility to launch and manage containers using YAML based configuration data. openstack-tripleo-heat-templates is a collection of OpenStac...

9.9CVSS8.2AI score0.00889EPSS
Exploits0References4
Rows per page
Query Builder