CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

UBUNTU-CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

OpenStack 安全漏洞

OpenStack is a cloud platform management program of the National Aeronautics and Space Administration NASA. A security vulnerability exists in the OpenStack magnum yoga-eom version that stems from allowing remote attackers to execute arbitrary code via the certmanager.py component...

PT-2024-22538 · Openstack · Openstack Magnum

Name of the Vulnerable Software and Affected Versions: OpenStack magnum yoga-eom version affected versions not specified Description: An issue in the software allows a remote attacker to execute arbitrary code via the cert manager.py component. Recommendations: At the moment, there is no...

CVE-2024-28718

CVE-2024-28718 affects the OpenStack Magnum yoga-eom release. A vulnerability in the cert_manager.py component allows a remote attacker to execute arbitrary code, described as a remote code execution issue. Multiple connected sources characterize this as a high-severity flaw (CVSS v3.1: 9.8, Netw...

CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

CVE-2024-28718

An issue in OpenStack magnum yoga-eom version allows a remote attacker to execute arbitrary code via the certmanager.py. component...

ROS-20240409-13

A vulnerability in the python-eventlet library of the OpenStack Platform cloud building platform is related to incorrect resource sweeping or freeing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

OESA-2024-1330 python-yaql security update

YAQL Yet Another Query Language is an embeddable and extensible query language, that allows performing complex queries against arbitrary objects. It has a vast and comprehensive standard library of frequently used querying functions and can be extend even further with user-specified functions. YA...

OESA-2024-1328 python-yaql security update

YAQL Yet Another Query Language is an embeddable and extensible query language, that allows performing complex queries against arbitrary objects. It has a vast and comprehensive standard library of frequently used querying functions and can be extend even further with user-specified functions. YA...

OESA-2024-1329 python-yaql security update

YAQL Yet Another Query Language is an embeddable and extensible query language, that allows performing complex queries against arbitrary objects. It has a vast and comprehensive standard library of frequently used querying functions and can be extend even further with user-specified functions. YA...

OESA-2024-1331 python-yaql security update

YAQL Yet Another Query Language is an embeddable and extensible query language, that allows performing complex queries against arbitrary objects. It has a vast and comprehensive standard library of frequently used querying functions and can be extend even further with user-specified functions. YA...

OESA-2024-1332 python-yaql security update

YAQL Yet Another Query Language is an embeddable and extensible query language, that allows performing complex queries against arbitrary objects. It has a vast and comprehensive standard library of frequently used querying functions and can be extend even further with user-specified functions. YA...

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 (python-twisted) security update

An update for python-twisted is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (python-twisted) security update

An update for python-twisted is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RHEL 8 : Red Hat OpenStack Platform 16.2.6 (python-twisted) (RHSA-2024:1518)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:1518 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail...

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-twisted) (RHSA-2024:1516)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:1516 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail...

The vulnerability of the designated platform’s system management service for building cloud solutions on the OpenStack Platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Designate system management service for building cloud solutions on OpenStack platforms is related to deficiencies in access control when processing the /etc/designate/private and /etc/designate/private/bind1.conf files. Exploiting this vulnerability could allow an attack...

CVE-2024-29156

A flaw was found in the Murano component of OpenStack. This vulnerability allows ordinary users capable of importing and deploying app packages to access sensitive information within OpenStack services. Specifically, through this exploit, unauthorized users can obtain Murano service account...