CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

151 matches found

CVE-2026-44393

An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. The oslo.messaging RabbitMQ driver does not perform TLS hostname verification when connecting to the message broker. When sslcafile is configured, the driver enables certificate chain validation but does not pass the expect...

7.4CVSS

Exploits0References2

CVE•added 23 hours ago•5 views

CVE-2026-44393

Summary: OpenStack oslo.messaging (RabbitMQ driver) versions 1.0.0–17.3.0 fail TLS hostname verification when connecting to the broker. The driver validates certificate chains when ssl_ca_file is configured but does not pass the broker hostname into the TLS stack, allowing any certificate signed ...

7.4CVSS5.8AI score

Exploits0References2

ATTACKERKB•added 23 hours ago•1 views

CVE-2026-44393

7.4CVSS5.8AI score

Exploits0References3

Debian CVE•added 23 hours ago•2 views

CVE-2026-44393

An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3...

7.4CVSS5.8AI score

Exploits0

Vulnrichment•added 23 hours ago•4 views

CVE-2026-44393

5.8AI score

Exploits0References2

EUVD•added 23 hours ago•3 views

EUVD-2026-34294

7.4CVSS5.8AI score

Exploits0References2

Positive Technologies•added 23 hours ago•4 views

PT-2026-46260

An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0. The oslo.messaging RabbitMQ driver does not perform TLS hostname verification when connecting to the message broker. When ssl ca file is configured, the driver enables certificate chain validation but does not pass the...

5.8AI score

Exploits0References3

Cvelist•added 23 hours ago•4 views

CVE-2026-44393

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в python-oslo.utils

A flaw was discovered in python-oslo-utils. Due to improper parsing, passwords that contain double quotes " cause incorrect masking in debug logs, resulting in any part of the password after the double quote being displayed as plain text...

4.9CVSS6.2AI score0.01417EPSS

Exploits1References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-0189

Malicious code in bioql PyPI...

4.9CVSS5.2AI score0.01417EPSS

Exploits1References15

Tenable Nessus•added 2025/08/27 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-38065

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A privilege escalation vulnerability exists in the oslo.privsep functionality of OpenStack git master 05194e7618 and prior. Overly permissive functionality with...

8.8CVSS7.9AI score0.00201EPSS

Exploits1References3

SUSE Linux•added 2025/07/21 2:46 p.m.•3 views

Security update for python-oslo.utils

This update for python-oslo.utils fixes the following issues: CVE-2022-0718: Fixed incorrect password masking in debug output. bsc1196454 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

6CVSS5.9AI score0.01417EPSS

Exploits1References4

Tenable Nessus•added 2025/03/05 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2022-0718

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote in them cause incorrect masking in debug logs, causing any part of...

4.9CVSS5.4AI score0.01417EPSS

Exploits1References2

Tenable Nessus•added 2024/11/04 12:0 a.m.•9 views

RHEL 7 : python-oslo-middleware (RHSA-2017:0300)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:0300 advisory. The OpenStack Oslo Middleware library provides components that can be injected into WSGI pipelines to intercept request and response flows. The base...

5.9CVSS5.7AI score0.00093EPSS

Exploits0References5