Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7796 matches found

NVD
NVDadded 2014/06/02 3:55 p.m.16 views

CVE-2014-0042

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets gpgcheck to 0 for certain templates, which disables GPG signature checking on downloaded packages and allows man-in-the-middle attackers to install arbitrary packages via unspecified vectors...

4.3CVSS6.7AI score0.01466EPSS
Exploits1References4
NVD
NVDadded 2014/06/02 3:55 p.m.27 views

CVE-2013-6470

The default configuration in the standalone controller quickstack manifest in openstack-foreman-installer, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, disables authentication for Qpid, which allows remote attackers to gain access by connecting to Qpid...

5CVSS7.1AI score0.01876EPSS
Exploits0References2
NVD
NVDadded 2014/06/02 3:55 p.m.44 views

CVE-2013-6433

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file...

7.6CVSS6.5AI score0.03324EPSS
Exploits0References4
OSV
OSVadded 2014/06/02 3:55 p.m.1 views

DEBIAN-CVE-2013-6433

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file...

7.6CVSS7.3AI score0.03324EPSS
Exploits0References1
OSV
OSVadded 2014/06/02 3:55 p.m.5 views

CVE-2013-6433

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file...

6.5AI score
Exploits0References4
OSV
OSVadded 2014/06/02 3:55 p.m.1 views

DEBIAN-CVE-2013-2014

OpenStack Identity Keystone before 2013.1 allows remote attackers to cause a denial of service memory consumption and crash via multiple long requests...

5CVSS6.5AI score0.03244EPSS
Exploits0References1
OSV
OSVadded 2014/06/02 3:55 p.m.7 views

CVE-2013-2014

OpenStack Identity Keystone before 2013.1 allows remote attackers to cause a denial of service memory consumption and crash via multiple long requests...

6.4AI score
Exploits0References8
NVD
NVDadded 2014/06/02 3:55 p.m.19 views

CVE-2013-2014

OpenStack Identity Keystone before 2013.1 allows remote attackers to cause a denial of service memory consumption and crash via multiple long requests...

5CVSS6.5AI score0.03244EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2014/06/02 3:55 p.m.32 views

CVE-2013-2014

OpenStack Identity Keystone before 2013.1 allows remote attackers to cause a denial of service memory consumption and crash via multiple long requests...

5CVSS5.9AI score0.03244EPSS
Exploits0References1
Prion
Prionadded 2014/06/02 3:55 p.m.17 views

Default configuration

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file...

7.6CVSS6.8AI score0.03324EPSS
Exploits0References4Affected Software2
Prion
Prionadded 2014/06/02 3:55 p.m.18 views

Design/Logic Flaw

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets gpgcheck to 0 for certain templates, which disables GPG signature checking on downloaded packages and allows man-in-the-middle attackers to install arbitrary packages via unspecified vectors...

4.3CVSS7AI score0.01466EPSS
Exploits1References4Affected Software1
Prion
Prionadded 2014/06/02 3:55 p.m.20 views

Design/Logic Flaw

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets sslverify to false for certain Yum repositories, which disables SSL protection and allows man-in-the-middle attackers to prevent updates via unspecified vectors...

4.3CVSS6.9AI score0.01374EPSS
Exploits0References4Affected Software1
Prion
Prionadded 2014/06/02 3:55 p.m.25 views

Design/Logic Flaw

OpenStack Identity Keystone before 2013.1 allows remote attackers to cause a denial of service memory consumption and crash via multiple long requests...

5CVSS7AI score0.03244EPSS
Exploits0References6Affected Software2
Prion
Prionadded 2014/06/02 3:55 p.m.17 views

Default configuration

The default configuration in the standalone controller quickstack manifest in openstack-foreman-installer, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, disables authentication for Qpid, which allows remote attackers to gain access by connecting to Qpid...

5CVSS7.6AI score0.01876EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2014/06/02 3:55 p.m.12 views

Design/Logic Flaw

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, uses an HTTP connection to download 1 packages and 2 signing keys from Yum repositories, which allows man-in-the-middle attackers to prevent updates via unspecified vectors...

4.3CVSS6.9AI score0.01466EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2014/06/02 3:0 p.m.23 views

CVE-2014-0041

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets sslverify to false for certain Yum repositories, which disables SSL protection and allows man-in-the-middle attackers to prevent updates via unspecified vectors...

6.5AI score0.01374EPSS
Exploits0References4
Cvelist
Cvelistadded 2014/06/02 3:0 p.m.22 views

CVE-2014-0042

OpenStack Heat Templates heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets gpgcheck to 0 for certain templates, which disables GPG signature checking on downloaded packages and allows man-in-the-middle attackers to install arbitrary packages via unspecified vectors...

6.7AI score0.01466EPSS
Exploits1References4
Cvelist
Cvelistadded 2014/06/02 3:0 p.m.42 views

CVE-2013-6433

The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file...

6.4AI score0.03324EPSS
Exploits0References4
CVE
CVEadded 2014/06/02 3:0 p.m.77 views

CVE-2014-0041

OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, is affected. The issue arises when heat-templates configures Yum repositories with sslverify set to false, effectively disabling SSL verification and allowing man-in-the-middle attackers to inte...

4.3CVSS6.6AI score0.01374EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2014/06/02 3:0 p.m.85 views

CVE-2013-6433

The CVE-2013-6433 issue affects the Red Hat openstack-neutron package: its default configuration prior to 2013.2.3-7 does not properly set a rootwrap configuration file, enabling privilege escalation by an attacker via a crafted config. The impact is privilege escalation with network-exposed vect...

7.6CVSS6.6AI score0.03324EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder