Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Openstack Security Vulnerabilities - 2023

cve
cve

CVE-2022-3100

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

5.9CVSS

5.4AI Score

0.001EPSS

2023-01-18 05:15 PM
68
cve
cve

CVE-2022-3101

A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file, leading to information disclosure of impo...

5.5CVSS

4.9AI Score

0.0005EPSS

2023-03-23 09:15 PM
59
cve
cve

CVE-2022-3146

A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file. This issue leads to information disclosur...

5.5CVSS

4.9AI Score

0.0005EPSS

2023-03-23 09:15 PM
62
cve
cve

CVE-2022-4134

A flaw was found in openstack-glance. This issue could allow a remote, authenticated attacker to tamper with images, compromising the integrity of virtual machines created using these modified images.

2.8CVSS

3.6AI Score

0.001EPSS

2023-03-06 11:15 PM
57
cve
cve

CVE-2023-2088

A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A remote, authenticated attacker could exploit this vulnerability by detaching one of their volumes from Cinder. The highest impact is to confidentiality.

6.5CVSS

6AI Score

0.001EPSS

2023-05-12 09:15 PM
297