Lucene search
+L

153 matches found

osv
osv
added 2022/05/13 1:7 a.m.7 views

GHSA-QCJ3-H27M-MP9X Openstack Octavia allows Insertion of Sensitive Information into Log File

In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowi...

8.7CVSS7.4AI score0.00878EPSS
Exploits0References6
github
github
added 2022/05/13 1:7 a.m.32 views

Openstack Octavia allows Insertion of Sensitive Information into Log File

In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are readable by all users. Sensitive information such as private keys can appear in these log files allowi...

7.5CVSS6.5AI score0.00878EPSS
Exploits0References6Affected Software1
nessus
nessus
added 2022/04/30 12:0 a.m.27 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (python-twisted) (RHSA-2022:1646)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:1646 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail...

8.1CVSS7.7AI score0.028EPSS
Exploits0References4
nessus
nessus
added 2022/04/08 12:0 a.m.28 views

RHEL 7 : Red Hat OpenStack Platform 13.0 (python-waitress) (RHSA-2022:1264)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:1264 advisory. Pure-python WSGI server Security Fixes: Inconsistent Interpretation of HTTP Requests 'HTTP Request Smuggling' CVE-2022-24761 For more details about t...

7.5CVSS7.5AI score0.01738EPSS
Exploits0References4
redhat
redhat
added 2022/04/06 9:40 a.m.46 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (python-waitress) security update

An update for python-waitress is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.2AI score0.01738EPSS
Exploits0References2
nessus
nessus
added 2022/03/25 12:0 a.m.52 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (golang-qpid-apache) (RHSA-2022:0989)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0989 advisory. Golang binding library for qpid-proton Security Fixes: net: incorrect parsing of extraneous zero characters at the beginning of an IP address octet...

7.5CVSS7.1AI score0.03775EPSS
Exploits1References5
nessus
nessus
added 2022/03/25 12:0 a.m.37 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (python-twisted) (RHSA-2022:0982)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0982 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat...

7.5CVSS7.5AI score0.03608EPSS
Exploits1References6
nessus
nessus
added 2022/03/25 12:0 a.m.39 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (golang-github-vbatts-tar-split) (RHSA-2022:0988)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0988 advisory. Security Fixes: net: incorrect parsing of extraneous zero characters at the beginning of an IP address octet CVE-2021-29923 golang:...

7.5CVSS7.2AI score0.06975EPSS
Exploits2References8
nessus
nessus
added 2022/03/25 12:0 a.m.25 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (openstack-neutron) (RHSA-2022:0990)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0990 advisory. OpenStack Networking neutron is a virtual network service for OpenStack. Just as OpenStack Compute nova provides an API to dynamically request and...

6.5CVSS6.5AI score0.0176EPSS
Exploits1References14
nessus
nessus
added 2022/03/25 12:0 a.m.30 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (numpy) (RHSA-2022:0987)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0987 advisory. A fast multidimensional array facility for Python Security Fixes: buffer overflow in the PyArrayNewFromDescrint in ctors.c CVE-2021-33430...

5.5CVSS7.3AI score0.01074EPSS
Exploits2References7
redhat
redhat
added 2022/03/24 10:59 a.m.383 views

Moderate: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 (numpy) security update

An update for numpy is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

5.5CVSS6.9AI score0.01074EPSS
Exploits2References3
nessus
nessus
added 2022/03/24 12:0 a.m.57 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (python-oslo-utils) (RHSA-2022:0993)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0993 advisory. The OpenStack Oslo Utility library. Security Fixes: incorrect password masking in debug output CVE-2022-0718 For more details about the security...

4.9CVSS5.9AI score0.01335EPSS
Exploits1References5
nessus
nessus
added 2022/03/24 12:0 a.m.55 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (python-twisted) (RHSA-2022:0992)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0992 advisory. Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat...

7.5CVSS7.5AI score0.03608EPSS
Exploits1References6
nessus
nessus
added 2022/03/24 12:0 a.m.31 views

RHEL 8 : Red Hat OpenStack Platform 16.2 (openstack-tripleo-heat-templates) (RHSA-2022:0995)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:0995 advisory. Heat templates for TripleO Security Fixes: Data leak of internal URL through keystoneauthtoken CVE-2021-4180 For more details about the security...

4.3CVSS5.2AI score0.00754EPSS
Exploits0References52
nessus
nessus
added 2022/01/26 12:0 a.m.26 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (etcd) (RHSA-2022:0260)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:0260 advisory. A highly-available key value store for shared configuration Security Fixes: net/http: limit growth of header canonicalization cache...

7.5CVSS7.2AI score0.06975EPSS
Exploits2References8
redhat
redhat
added 2022/01/25 1:55 p.m.54 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform 16.1 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS6.7AI score0.06975EPSS
Exploits2References4
redhat
redhat
added 2022/01/24 1:53 p.m.54 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (etcd) security update

An update for etcd is now available for Red Hat OpenStack Platform 16.2 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS6.7AI score0.06975EPSS
Exploits2References4
nessus
nessus
added 2021/12/11 12:0 a.m.40 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (etcd) (RHSA-2021:5072)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:5072 advisory. A highly-available key value store for shared configuration Security Fixes: net/http: panic in ReadRequest and ReadResponse when reading a...

7.5CVSS7.2AI score0.03692EPSS
Exploits3References11
nessus
nessus
added 2021/12/11 12:0 a.m.47 views

RHEL 8 : Red Hat OpenStack Platform 16.1 (python-django20) (RHSA-2021:5070)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:5070 advisory. Security Fixes: Potential directory-traversal via archive.extract CVE-2021-3281 potential directory-traversal via uploaded files...

7.5CVSS6.7AI score0.07605EPSS
Exploits1References13
nessus
nessus
added 2021/10/26 12:0 a.m.35 views

RHEL 7 : Red Hat OpenStack Platform 13.0 (redis) (RHSA-2021:3980)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:3980 advisory. Redis is an advanced key-value store. Security Fixes: Lua scripts can overflow the heap-based Lua stack CVE-2021-32626 Integer overflow issu...

8.8CVSS6.7AI score0.1578EPSS
Exploits0References14
Rows per page
Query Builder