CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2024/08/21 12:0 a.m.•15 views

Debian dsa-5754 : cinder-api - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5754 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5754-1 [email protected] https://www.debian.org/security/ Moritz...

6.5CVSS6.8AI score0.00835EPSS

Tenable Nessus•added 2024/08/21 12:0 a.m.•23 views

Debian dsa-5756 : nova-api - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5756 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5756-1 [email protected] https://www.debian.org/security/ Moritz...

6.5CVSS6.8AI score0.00835EPSS

CNNVD•added 2024/08/20 12:0 a.m.•3 views

Red Hat OpenStack Platform 信任管理问题漏洞

Red Hat OpenStack Platform is a cloud computing management platform from Red Hat USA. Red Hat OpenStack Platform suffers from a trust management issue vulnerability that originates from allowing an attacker to deploy potentially compromised container images by disabling TLS certificate validation...

8.1CVSS7.7AI score0.00392EPSS

Amazon•added 2024/08/20 12:0 a.m.•16 views

Low: cups

Issue Overview: A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local attackers with control of the lp users to create files as root with...

3.3CVSS4.2AI score0.00268EPSS

Exploits0

RedHat Linux•added 2024/08/08 7:27 a.m.•27 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (openstack-nova) security update

An update for openstack-nova is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RedHat Linux•added 2024/08/08 7:27 a.m.•9 views

openstack-nova: Regression VMDK/qcow arbitrary file access

An arbitrary file access flaw was found in Nova. By supplying a RAW format image, a specially crafted QCOW2 image with a backing file path, or a VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced file’s contents from the...

Tenable Nessus•added 2024/08/08 12:0 a.m.•21 views

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (openstack-nova) (RHSA-2024:5113)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5113 advisory. OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines,creating a redundant and...

6.5CVSS6AI score0.00941EPSS

Exploits1References4

RedHat Linux•added 2024/08/07 4:12 p.m.•0 views

openstack-nova: Regression VMDK/qcow arbitrary file access

RedHat Linux•added 2024/08/07 4:12 p.m.•21 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 security update

Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 16.2 Train for Red Hat Enterprise Linux RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for building,...

RedHat Linux•added 2024/08/07 1:23 p.m.•26 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.3 security update

Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 17.1 Wallaby for Red Hat Enterprise Linux RHEL 9.2. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for buildin...

RedHat Linux•added 2024/08/07 1:23 p.m.•5 views

openstack-nova: Regression VMDK/qcow arbitrary file access

RedHat Linux•added 2024/08/07 1:21 p.m.•4 views

openstack-nova: Regression VMDK/qcow arbitrary file access

RedHat Linux•added 2024/08/07 1:21 p.m.•13 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.3 security update

Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 17.1 Wallaby for Red Hat Enterprise Linux RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for buildin...

Tenable Nessus•added 2024/08/07 12:0 a.m.•18 views

RHEL 8 : Red Hat OpenStack Platform 16.2.6 (RHSA-2024:5097)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5097 advisory. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud...

6.5CVSS5.6AI score0.00941EPSS

Exploits1References4

Tenable Nessus•added 2024/08/07 12:0 a.m.•24 views

RHEL 9 : Red Hat OpenStack Platform 17.1.3 (RHSA-2024:5083)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5083 advisory. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud...

6.5CVSS5.6AI score0.00941EPSS

Exploits1References4

OSV•added 2024/08/02 9:31 p.m.•11 views

GHSA-2FQR-CX7Q-3PH8 openstack-heat may disclose sensitive information

An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack stack abandon command with the hidden feature set to True and the CVE-2023-1625 fix applied...

5.3CVSS6AI score0.0039EPSS