Vulnerabilities
Vulnerable Software
Openstack:  Security Vulnerabilities
An issue was discovered in OpenStack Nova before 18.2.4, 19.x before 19.1.0, and 20.x before 20.1.0. It can leak consoleauth tokens into log files. An attacker with read access to the service's logs may obtain tokens used for console access. All Nova setups using novncproxy are affected. This is related to NovaProxyRequestHandlerBase.new_websocket_client in console/websocketproxy.py.
CVSS Score
3.3
EPSS Score
0.004
Published
2020-02-19
The file /etc/openstack-dashboard/local_settings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release (python-django-horizon package before 2012.1.1) is world readable and exposes the secret key value.
CVSS Score
5.5
EPSS Score
0.003
Published
2019-12-30
Within the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value.
CVSS Score
5.5
EPSS Score
0.004
Published
2019-12-30
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass
CVSS Score
9.8
EPSS Score
0.018
Published
2019-12-10
python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache signing bypass
CVSS Score
9.8
EPSS Score
0.017
Published
2019-12-10
OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage in the list credentials API. Any user with a role on a project is able to list any credentials with the /v3/credentials API when enforce_scope is false. Users with a role on a project are able to view any other users' credentials, which could (for example) leak sign-on information for Time-based One Time Passwords (TOTP). Deployments with enforce_scope set to false are affected. (There will be a slight performance impact for the list credentials API once this issue is fixed.)
CVSS Score
8.8
EPSS Score
0.018
Published
2019-12-09
OpenStack nova base images permissions are world readable
CVSS Score
5.5
EPSS Score
0.004
Published
2019-12-05
OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (equivalent to a username) to obtain the EC2_SECRET_KEY (equivalent to a password). Exposing the EC2_ACCESS_KEY via http or tools that allow man-in-the-middle over https could allow an attacker to easily obtain the EC2_SECRET_KEY. An attacker could also presumably brute force values for EC2_ACCESS_KEY.
CVSS Score
5.9
EPSS Score
0.014
Published
2019-11-26
Designate does not enforce the DNS protocol limit concerning record set sizes
CVSS Score
6.5
EPSS Score
0.016
Published
2019-11-22
OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space
CVSS Score
7.5
EPSS Score
0.012
Published
2019-11-12


Contact Us

Shodan ® - All rights reserved