A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.
5.9CVSS
5.4AI Score
0.001EPSS
A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.
6.6CVSS
4.9AI Score
0.0004EPSS
A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one configuration. Barbican containers share the same CGROUP, USER, and NET namespace with the host system and other OpenStack services. If any service is compromi...
6CVSS
5AI Score
0.0004EPSS