Openstack@3.0 Security Vulnerabilities and Issues — Openstack@3.0 CVE List

Lucene search

RedhatOpenstack3.0

6 matches found

CVE•added 2019/11/01 7:15 p.m.•169 views

CVE-2013-2255

HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.

5.9CVSS5.7AI score0.00414EPSS

CVE•added 2019/12/10 3:15 p.m.•85 views

CVE-2013-2166

python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass

9.8CVSS9.2AI score0.00087EPSS

CVE•added 2019/12/10 3:15 p.m.•82 views

CVE-2013-2167

python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass

9.8CVSS9.2AI score0.00826EPSS

CVE•added 2019/11/05 3:15 p.m.•57 views

CVE-2013-6460

Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents

6.5CVSS6.4AI score0.02521EPSS

CVE•added 2019/11/05 3:15 p.m.•47 views

CVE-2013-6461

Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits

6.5CVSS6.4AI score0.02046EPSS

CVE•added 2019/12/10 2:15 p.m.•38 views

CVE-2013-1793

openstack-utils openstack-db has insecure password creation

7.5CVSS7.6AI score0.00277EPSS