Lucene search
K
RedhatOpenstack

210 matches found

CVE
CVE
added 2018/07/27 1:0 p.m.92 views

CVE-2017-2622

CVE-2017-2622 affects OpenStack Workflow (mistral). The vulnerability arises from a log directory being world-readable, enabling an information disclosure vulnerability for a malicious local user. Affected component: mistral service within OpenStack; root cause is improper directory permissions e...

5.9CVSS5.2AI score0.00372EPSS
CVE
CVE
added 2017/05/23 5:0 p.m.92 views

CVE-2017-9214

Summary: CVE-2017-9214 affects Open vSwitch (OvS) 2.7.0 and is due to a buffer over-read caused by an unsigned integer underflow in the function ofputil_pull_queue_get_config_reply10 while parsing OFPT_QUEUE_GET_CONFIG_REPLY (OFP 1.0). Impact (as described): Buffer over-read with potential denial...

9.8CVSS9.3AI score0.02887EPSS
CVE
CVE
added 2019/07/30 4:22 p.m.92 views

CVE-2019-10141

OpenStack Ironic Inspector (ironic-inspector) contains a SQL injection in node_cache.find_node() that uses unfiltered data from the /v1/continue POST. This API is unauthenticated, so an attacker with network access could exploit it to cause denial of service; data exfiltration is unlikely per the...

9.1CVSS8.8AI score0.02464EPSS
Web
CVE
CVE
added 2019/03/13 2:0 a.m.91 views

CVE-2019-9735

CVE-2019-9735 affects the OpenStack Neutron iptables security group driver. In affected releases (OpenStack Neutron before 10.0.8; 11.x before 11.0.7; 12.x before 12.0.6; 13.x before 13.0.3), setting a destination port in a security group rule together with a protocol that doesn’t support that op...

6.5CVSS6.1AI score0.03635EPSS
CVE
CVE
added 2018/07/26 12:0 p.m.89 views

CVE-2017-2637

CVE-2017-2637 describes a design flaw in the Red Hat OpenStack Platform director’s use of TripleO for enabling libvirtd live-migration. Libvirtd is deployed by default and listens on 0.0.0.0 with no authentication or encryption. A remote actor who can reach any compute host IP (including localhos...

10CVSS9.7AI score0.04783EPSS
CVE
CVE
added 2018/07/19 1:0 p.m.89 views

CVE-2017-2673

The CVE-2017-2673 entry concerns an authorization-check flaw in OpenStack Keystone federation configurations. An authenticated federated user could request permissions to a project and be unintentionally granted all related roles, including administrative roles, due to inadequate authorization ch...

7.2CVSS6.6AI score0.02106EPSS
CVE
CVE
added 2018/07/31 2:0 p.m.89 views

CVE-2018-14432

Summary of CVE-2018-14432 (OpenStack Keystone federation) : An authenticated GET to /v3/OS-FEDERATION/projects could bypass access controls and disclose all projects and their attributes when Keystone’s /v3/OS-FEDERATION endpoint is enabled via policy.json. Affected releases include OpenStack Key...

5.3CVSS4.8AI score0.01618EPSS
CVE
CVE
added 2014/10/02 2:0 p.m.88 views

CVE-2014-3621

CVE-2014-3621 affects OpenStack Keystone (identity service). The issue is a catalog URL replacement in Keystone that, when processing endpoints, can disclose sensitive configuration by crafting the publicurl field (demonstrated via $(admin_token)). Affected releases include Keystone before 2013.2...

4CVSS5.8AI score0.02109EPSS
CVE
CVE
added 2018/08/27 5:0 p.m.88 views

CVE-2017-15139

CVE-2017-15139 affects OpenStack Cinder up to Queens, specifically ScaleIO volumes using thin volumes with zero padding. The vulnerability can lead to leakage of sensitive data between tenants when new volumes are created in certain configurations. Public documentation in connected items confirms...

7.5CVSS7.2AI score0.01244EPSS
CVE
CVE
added 2018/07/26 2:0 p.m.87 views

CVE-2017-7539

CVE-2017-7539 affects QEMU’s NBD server: an assertion-failure during initial connection negotiation can crash qemu-nbd, enabling a remote DoS. Affected product: QEMU/NBD server prior to 2.10.1. Root cause: I/O coroutine in the initial negotiation is undefined. Impact: Denial of service via server...

7.5CVSS7.1AI score0.05529EPSS
CVE
CVE
added 2013/09/30 8:0 p.m.86 views

CVE-2013-4222

CVE-2013-4222 affects OpenStack Keystone (Folsom, Grizzly 2013.1.3 and earlier, Havana before havana-3). The vulnerability arises because Keystone does not properly revoke user tokens when a tenant is disabled, allowing remote authenticated users to continue accessing resources via their tokens. ...

6.5CVSS6.1AI score0.01892EPSS
CVE
CVE
added 2015/04/10 2:0 p.m.86 views

CVE-2015-1842

CVE-2015-1842 relates to Red Hat OpenStack modules where the puppet manifests in the openstack-puppet-modules package were configured with a known default password for the pcsd daemon (CHANGEME). If this password is not changed and an attacker can access pcsd remotely, they could execute arbitrar...

10CVSS7.8AI score0.05216EPSS
CVE
CVE
added 2019/03/26 5:45 p.m.86 views

CVE-2018-16856

CVE-2018-16856 affects the OpenStack Load Balancing service (openstack-octavia) in Red Hat OpenStack Platform Director installations. In affected builds, openstack-octavia before versions 2.0.2-5 and 3.0.1-0.20181009115732 creates log files readable by all users, allowing sensitive data such as p...

7.5CVSS7.3AI score0.00878EPSS
CVE
CVE
added 2016/01/20 4:0 p.m.85 views

CVE-2015-5295

CVE-2015-5295 affects OpenStack Heat’s template-validate command. A remote authenticated user can abuse the template validation path to cause memory exhaustion (DoS) or to determine the existence of local files via the resource type in a template, demonstrated by file:///dev/zero. Affected softwa...

5.5CVSS5.2AI score0.02928EPSS
CVE
CVE
added 2016/07/12 7:0 p.m.85 views

CVE-2016-4985

CVE-2016-4985 affects the OpenStack Ironic project, specifically the ironic-api service. The vulnerability allows an attacker with network access to the ironic-api to bypass authentication and retrieve full details of a registered node by knowing the node’s MAC address and sending a crafted POST ...

7.5CVSS7.1AI score0.02836EPSS
Web
CVE
CVE
added 2013/11/23 5:0 p.m.84 views

CVE-2013-2029

CVE-2013-2029 describes a local privilege issue in Nagios Core 3.4.4, 3.5.1 and earlier where a symlink attack on a temporary nagioscfg file in /tmp allows a local user to overwrite arbitrary files. The vulnerability is tied to the nagios.upgrade_to_v3.sh script distributed with these releases. P...

6.3CVSS6.4AI score0.00354EPSS
CVE
CVE
added 2017/03/31 3:0 p.m.84 views

CVE-2014-5008

CVE-2014-5008: Snoopy in Nagios could allow remote command execution due to an incomplete fix related to escaping in the Snoopy library. Public advisories (Red Hat RHSA-2017-0214, IBM PowerKVM bulletin, Debian DLA-357-1, Amazon ALAS-2017-899) associate the issue with Nagios/Snoopy and provide upd...

9.8CVSS9.5AI score0.0413EPSS
CVE
CVE
added 2017/12/08 3:0 p.m.82 views

CVE-2017-10906

Summary: CVE-2017-10906 is a Fluentd escape sequence injection vulnerability. Affects Fluentd releases 0.12.29–0.12.40, where the filter_parser.rb:filter_stream path can lead to arbitrary command execution or terminal UI changes via unspecified log-processing vectors. Root cause: escape sequence ...

10CVSS9.5AI score0.04581EPSS
CVE
CVE
added 2018/10/31 1:0 p.m.81 views

CVE-2016-2121

CVE-2016-2121 relates to a permissions flaw in Redis that sets weak permissions on certain files/directories, enabling a local, unprivileged user to potentially access sensitive information. The connected OSV/RHSA entries corroborate a Redis vulnerability requiring a security update; Red Hat’s RH...

5.5CVSS5.3AI score0.00374EPSS
CVE
CVE
added 2018/04/26 5:0 p.m.81 views

CVE-2016-9590

CVE-2016-9590 affects puppet-swift (used by Red Hat OpenStack Platform director to install Object Storage). Root cause: during installation the Puppet script deploys the service and incorrectly removes and then recreates proxy-server.conf with world-readable permissions, enabling information disc...

6.5CVSS6.3AI score0.01152EPSS
CVE
CVE
added 2014/06/02 3:0 p.m.80 views

CVE-2013-6470

The CVE-2013-6470 entry concerns the default configuration of the standalone controller quickstack manifest in openstack-foreman-installer used with Red Hat Enterprise Linux OpenStack Platform 4.0. The root cause is that the Qpid service is configured without authentication by default, allowing r...

5CVSS7.3AI score0.01876EPSS
CVE
CVE
added 2015/01/07 7:0 p.m.80 views

CVE-2014-9493

OpenStack Glance V2 API (before 2014.2.2 and 2014.1.4) allows remote authenticated users to read or delete arbitrary files via a full pathname in a file: URL in the image location property. Root cause is a path traversal flaw in the V2 image location handling; impact includes potential exposure o...

5.5CVSS6.2AI score0.0277EPSS
CVE
CVE
added 2015/01/23 3:0 p.m.80 views

CVE-2014-9623

OpenStack Glance (Image Service) CVE-2014-9623 affects 2014.2.x through 2014.2.1, 2014.1.3 and earlier, allowing remote authenticated users to bypass storage quota and cause disk DoS by deleting an image in the saving state. Root cause is an incomplete fix that permitted quota bypass during uploa...

4CVSS6.1AI score0.02844EPSS
CVE
CVE
added 2014/06/02 3:0 p.m.79 views

CVE-2014-0041

OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, is affected. The issue arises when heat-templates configures Yum repositories with sslverify set to false, effectively disabling SSL verification and allowing man-in-the-middle attackers to inte...

4.3CVSS6.6AI score0.01374EPSS
CVE
CVE
added 2022/07/22 2:54 p.m.79 views

CVE-2022-1655

CVE-2022-1655 affects Horizon on Red Hat OpenStack. The underlying issue is an incorrect permission handling for critical resources: Horizon session cookies are created without the HttpOnly flag even when HorizonSecureCookies is true. This could lead to confidentiality/integrity risks for user se...

6.5CVSS6.4AI score0.00471EPSS
CVE
CVE
added 2013/11/19 7:0 p.m.78 views

CVE-2013-4386

Foreman (prior to 1.2.3) contains SQL injection vulnerabilities in app/models/concerns/host_common.rb that allow remote attackers to execute arbitrary SQL via the fqdn or hostgroup parameters. This impacts Foreman versions before 1.2.3; remediation is to upgrade to 1.2.3 or later (as noted by Red...

7.5CVSS8.8AI score0.01243EPSS
CVE
CVE
added 2014/02/02 12:0 a.m.78 views

CVE-2013-6491

CVE-2013-6491 affects the OpenStack Oslo stack (OpenStack Nova) using the python-qpid client; specifically, the common/rpc/impl_qpid.py path does not enforce SSL when qpid_protocol is set to ssl, allowing remote attackers to sniff network traffic and obtain sensitive information. The root cause i...

4.3CVSS5.9AI score0.01884EPSS
CVE
CVE
added 2015/03/09 2:0 p.m.77 views

CVE-2014-3691

Foreman/foreman-proxy is affected by CVE-2014-3691 due to failure to validate SSL certificates in SSL-enabled mode, allowing remote attackers to bypass authentication and issue arbitrary API requests without a certificate. Affected versions: Foreman prior to 1.5.4 and foreman-proxy in Foreman 1.6...

7.5CVSS7.6AI score0.01706EPSS
CVE
CVE
added 2017/03/31 3:0 p.m.77 views

CVE-2014-5009

CVE-2014-5009 is a remote command-execution vulnerability in Snoopy used by Nagios. It arises from an incomplete fix for CVE-2014-5008 and is reported with high-severity scores (CVSS v3.0 up to 9.8 in the NVD entry). The provided documents identify Nagios/Nagios Core and Snoopy as the affected co...

9.8CVSS9.6AI score0.04707EPSS
CVE
CVE
added 2019/03/26 5:55 p.m.77 views

CVE-2019-3830

CVE-2019-3830 affects OpenStack Ceilometer (ceilometer-agent) where the agent prints sensitive configuration data to log files, exposing confidentiality. The issue is in ceilometer prior to version 12.0.0.0rc1. Red Hat and OSV/Red Hat advisories confirm the vulnerability and reference the fix: up...

7.8CVSS7.2AI score0.00386EPSS
CVE
CVE
added 2021/05/06 4:23 p.m.76 views

CVE-2021-31918

CVE-2021-31918 affects tripleo-ansible as shipped in Red Hat OpenStack Platform 16.1.6. The Ansible log file is readable by unprivileged users during stack update and creation, creating a data confidentiality risk. Red Hat RHSA-2021:2119 documents this issue and provides remediation guidance via ...

7.5CVSS7.4AI score0.00998EPSS
CVE
CVE
added 2013/12/14 5:0 p.m.75 views

CVE-2013-6391

Summary (CVE-2013-6391) OpenStack Keystone’s ec2token API could generate a token not scoped to a specific trust when converting a trust-scoped token, allowing remote trust users to obtain EC2 credentials and potentially elevate privileges. Affected releases include Keystone before Havana 2013.2.1...

5.8CVSS6.6AI score0.02239EPSS
CVE
CVE
added 2013/07/31 10:0 a.m.74 views

CVE-2013-2121

Foreman (Red Hat OpenStack/Satellite) CVE-2013-2121 is an eval injection in the create action of the bookmarks controller. Before 1.2.0-RC2, remote authenticated users with bookmark-creation permissions can execute arbitrary code via a controller name attribute. Public references note code inject...

6CVSS7.5AI score0.24782EPSS
Web
CVE
CVE
added 2013/10/29 10:0 p.m.73 views

CVE-2013-4185

CVE-2013-4185 describes an algorithmic complexity vulnerability in OpenStack Compute (Nova) where the code path for updating network source security group policies is mishandled. This allows an authenticated remote user to trigger a denial of service by issuing many server-creation operations, ca...

4CVSS6.1AI score0.02087EPSS
CVE
CVE
added 2014/08/19 6:0 p.m.73 views

CVE-2014-4615

CVE-2014-4615 affects OpenStack components including PyCADF (0.5.0 and earlier), Ceilometer 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo. The issue allows remote authenticated users to read a message queue (v2/meters/http.reque...

5CVSS5.9AI score0.02774EPSS
CVE
CVE
added 2018/07/26 2:0 p.m.73 views

CVE-2017-7543

CVE-2017-7543 describes a race-condition in OpenStack Neutron that, after a minor overcloud update, resets to 0 both net.bridge.bridge-nf-call-ip6tables and net.bridge.bridge-nf-call-iptables, effectively disabling neutron security groups. This race can be triggered by an update, allowing an atta...

5.9CVSS5.4AI score0.01847EPSS
CVE
CVE
added 2013/07/31 10:0 a.m.72 views

CVE-2013-2113

CVE-2013-2113 affects Foreman before 1.2.0-RC2. The vulnerability lies in the create method of app/controllers/users_controller.rb, where remote authenticated users with create_users permissions can gain privileges by either flipping the admin flag or assigning an arbitrary role. Impact is privil...

6CVSS6.7AI score0.20934EPSS
Web
CVE
CVE
added 2013/09/16 7:0 p.m.71 views

CVE-2013-4182

CVE-2013-4182 affects Foreman prior to 1.2.2, specifically the API at /api/v1/hosts handled by hosts_controller.rb, where access checks were insufficient. This allowed remote attackers to access arbitrary hosts via the API request. The publicly documented remediation is to upgrade to Foreman 1.2....

7.5CVSS6.9AI score0.02395EPSS
CVE
CVE
added 2019/11/05 2:2 p.m.71 views

CVE-2013-6460

CVE-2013-6460 affects the Nokogiri gem (version 1.5.x) and is described in connected documents as a Denial of Service via an infinite loop when parsing XML documents. The available sources consistently state a DoS impact but do not provide concrete exploitation details or patch/version remediatio...

6.5CVSS6.4AI score0.02083EPSS
CVE
CVE
added 2014/10/31 2:0 p.m.71 views

CVE-2014-8333

CVE-2014-8333 affects the VMware driver in OpenStack Compute (Nova) prior to 2014.1.4. An authenticated user can trigger a denial-of-service (disk consumption) by deleting an instance that is in the resize state, causing backend resource exhaustion. Remediation reported in associated advisories: ...

4CVSS6.2AI score0.02006EPSS
CVE
CVE
added 2013/10/29 10:0 p.m.70 views

CVE-2013-4261

OpenStack Compute (Nova) Folsom, Grizzly, and earlier versions are affected when using the Apache Qpid RPC backend. The issue arises from improper error handling in messaging, allowing remote attackers to cause a denial of service via connection pool exhaustion by sending long strings to an insta...

3.5CVSS6.4AI score0.01738EPSS
CVE
CVE
added 2014/11/24 3:0 p.m.70 views

CVE-2014-7821

OpenStack Neutron vulnerable to a denial-of-service via a crafted dns_nameservers value in DNS configuration. Affected products: OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1. Root cause: improper handling of the dns_nameservers parameter leads to crash when an authenticated user...

4CVSS6.1AI score0.03936EPSS
CVE
CVE
added 2018/07/27 6:0 p.m.70 views

CVE-2017-2621

The CVE-2017-2621 issue affects OpenStack Orchestration (Heat) prior to 8.0.0 (and 6.1.0, 7.0.2 in older branches): a service log directory was world-readable, allowing a local attacker to access sensitive information. Connected advisories confirm Heat-related fixes and updates (e.g., RHSA notes ...

5.9CVSS5.2AI score0.00413EPSS
CVE
CVE
added 2018/07/30 4:0 p.m.70 views

CVE-2018-10898

CVE-2018-10898 affects openstack-tripleo-heat-templates prior to 8.0.2-40. When deploying with Director in RHOSP13, Opendaylight is configured with easily guessable default credentials, as described in multiple sources (Red Hat RHSA-2018:2214 and CNVD/OSV entries). The issue arises from default c...

8.8CVSS8.5AI score0.0087EPSS
CVE
CVE
added 2013/11/23 5:0 p.m.69 views

CVE-2013-4214

CVE-2013-4214 affects Nagios Core 3.4.4, 3.5.1 and earlier. The issue is a local symlink attack in rss-newsfeed.php: when MAGPIE_CACHE_ON is set to 1, a local attacker can create a symbolic link from a temporary file to a target file in /tmp/magpie_cache, enabling overwriting of arbitrary files w...

6.3CVSS8.2AI score0.00355EPSS
CVE
CVE
added 2014/10/08 7:0 p.m.69 views

CVE-2014-7231

OpenStack Oslo utility library issue CVE-2014-7231 affects Cinder, Nova, and Trove before versions 2013.2.4 and 2014.1 before 2014.1.3. The strutils.mask_password() function did not properly mask passwords in command logs, enabling a local user with read access to logs to retrieve passwords. Reme...

2.1CVSS6.1AI score0.00528EPSS
CVE
CVE
added 2014/04/17 2:0 p.m.68 views

CVE-2014-0071

CVE-2014-0071 affects PackStack in Red Hat OpenStack 4.0, where PackStack did not correctly enforce default security group rules when deployed to Neutron, allowing remote attackers to bypass access restrictions and reach otherwise restricted systems. The issue is documented in RHSA-2014:0233 and ...

6.4CVSS6.9AI score0.01819EPSS
CVE
CVE
added 2015/03/10 2:0 p.m.68 views

CVE-2015-0271

CVE-2015-0271 affects Red Hat OpenStack Horizon’s redhat-access-plugin (pre-6.0.3). The vulnerability arises from an unsanitized input in the log-viewing function, allowing an authenticated attacker to read arbitrary files via a crafted path. Impact is reading sensitive files with the web server’...

4CVSS6.6AI score0.01676EPSS
CVE
CVE
added 2018/08/22 5:0 p.m.68 views

CVE-2017-2627

CVE-2017-2627 affects openstack-tripleo-common as shipped with Red Hat OpenStack Enterprise 10 and 11. The sudoers configuration for the mistral user contains wildcards enabling directory traversal, and it grants passwordless root access to the validations user. These issues create local privileg...

8.2CVSS8.2AI score0.00661EPSS
CVE
CVE
added 2018/09/10 7:0 p.m.68 views

CVE-2018-14620

CVE-2018-14620 affects openstack-rabbitmq-container and openstack-containers shipped with Red Hat OpenStack Platform 12–14. Root cause: the rabbitmq_clusterer component is fetched over HTTP during docker build without integrity validation, enabling an attacker to inject malicious code into the im...

9.8CVSS9.4AI score0.00597EPSS
Total number of security vulnerabilities210