Information Disclosure

2019-09-0400:09:44

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

47.2%

JSON

openstack-nova is vulnerable to information disclosure. An external exception from an API request from an authenticated user results in the leak of environment information or other confidential information such as configuration data.

CPENameOperatorVersion
openstack-novaeq12.0.6__2.el7ost
openstack-novaeq15.1.5__1.el7
openstack-novaeq16.1.4__2.el7
openstack-novaeq18.0.3__0.20181011032838.d1243fe.el7ost
openstack-novaeq17.0.3__0.20180420001141.el7ost
openstack-novaeq17.0.3__1.el7
openstack-novaeq14.0.6__2.el7ost
openstack-novaeq14.0.6__2.1.el7ost
openstack-novaeq17.0.2__1.el7
openstack-novaeq12.0.6__13.el7ost

Name	Operator	Version
openstack-nova	eq	12.0.6__2.el7ost
openstack-nova	eq	15.1.5__1.el7
openstack-nova	eq	16.1.4__2.el7
openstack-nova	eq	18.0.3__0.20181011032838.d1243fe.el7ost
openstack-nova	eq	17.0.3__0.20180420001141.el7ost
openstack-nova	eq	17.0.3__1.el7
openstack-nova	eq	14.0.6__2.el7ost
openstack-nova	eq	14.0.6__2.1.el7ost
openstack-nova	eq	17.0.2__1.el7
openstack-nova	eq	12.0.6__13.el7ost