redhat-access-plugin-openstack is vulnerable to arbitrary file read. The vulnerability exists as the log-viewing function in the Red Hat redhat-access-plugin before 6.0.3 for OpenStack Dashboard (horizon) allows remote attackers to read arbitrary files via a crafted path.
rhn.redhat.com/errata/RHSA-2015-0645.html
rhn.redhat.com/errata/RHSA-2015-0840.html
rhn.redhat.com/errata/RHSA-2015-0841.html
access.redhat.com/errata/RHSA-2015:0645
access.redhat.com/errata/RHSA-2015:0840
access.redhat.com/errata/RHSA-2015:0841
access.redhat.com/security/cve/CVE-2015-0271
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1193638
rhn.redhat.com/errata/RHSA-2015-0645.html