Lucene search
K
RedhatOpenstack

7 matches found

CVE
CVE
added 2018/07/18 1:0 p.m.314 views

CVE-2018-2767

CVE-2018-2767 affects Oracle MySQL Server (subcomponent: Server: Security: Encryption). Affected are MySQL Server versions 5.5.60 and earlier, 5.6.40 and earlier, and 5.7.22 and earlier. The vulnerability allows a low-privilege attacker who can reach the server over multiple network protocols to ...

3.5CVSS3.6AI score0.01515EPSS
CVE
CVE
added 2020/03/12 5:47 p.m.287 views

CVE-2020-1739

CVE-2020-1739 affects Ansible (2.7.16 and earlier, 2.8.8 and earlier, 2.9.5 and earlier). The flaw arises when a password is supplied to the svn module via the password argument, causing the password to be echoed into the svn command line and readable by other users on the same node by inspecting...

3.9CVSS5.5AI score0.00358EPSS
CVE
CVE
added 2020/01/31 9:38 p.m.258 views

CVE-2015-6815

CVE-2015-6815 affects QEMU with e1000 NIC emulation. The process_tx_desc path in hw/net/e1000.c improperly handles transmit descriptor data, enabling a remote attacker within the local network to trigger an infinite loop and guest crash (Denial of Service). This vulnerability is tied to QEMU befo...

3.5CVSS5AI score0.00982EPSS
CVE
CVE
added 2017/08/08 3:0 p.m.235 views

CVE-2017-3653

CVE-2017-3653 affects the MySQL Server component (subcomponent: Server: DDL) in Oracle MySQL. Affected: MySQL Server versions 5.5.56 and earlier, 5.6.36 and earlier, and 5.7.18 and earlier. Description in connected advisories confirms the vulnerability is exploitable with network access via multi...

3.5CVSS3.4AI score0.01887EPSS
CVE
CVE
added 2020/03/16 3:3 p.m.158 views

CVE-2020-1736

CVE-2020-1736 concerns Ansible Engine where moving a file with atomic_move cannot set the destination file mode. If the destination does not exist, the move can render the new file world-readable; if the file exists, permissions may be loosened before the move, potentially exposing sensitive data...

3.3CVSS3.6AI score0.00401EPSS
CVE
CVE
added 2020/03/16 3:8 p.m.138 views

CVE-2020-1738

CVE-2020-1738 affects Ansible Engine. Root cause: when the module package or service is used and the parameter 'use' is omitted, an attacker with local access can influence which module is sent via the ansible facts file if a prior task ran under a malicious user. Affected: all versions in the 2....

3.9CVSS4AI score0.00381EPSS
CVE
CVE
added 2013/10/29 10:0 p.m.73 views

CVE-2013-4261

OpenStack Compute (Nova) Folsom, Grizzly, and earlier versions are affected when using the Apache Qpid RPC backend. The issue arises from improper error handling in messaging, allowing remote attackers to cause a denial of service via connection pool exhaustion by sending long strings to an insta...

3.5CVSS6.4AI score0.01738EPSS