HIGH🇵🇱 Wersja polska

CVE-2023-1625

CVSS 7.4v3.1pub. 2023-09-24upd. 2024-11-21

An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show' command to reveal parameters which are supposed to remain hidden. This has a low impact to the confidentiality, integrity, and availability of the system.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
  • Openstack Heat

    APP
    Openstack
    wszystkie wersje
  • Red Hat Openstack Platform

    APP
    Redhat
    13.016.116.217.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-10731CRITICAL9.9ten sam produkt

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does no...

CVE-2024-8007HIGH8.1ten sam produkt

A flaw was found in the openstack-tripleo-common component of the Red Hat OpenStack Platform (RHOSP) director....

CVE-2022-3596HIGH7.5ten sam produkt

An information leak was found in OpenStack's undercloud. This flaw allows unauthenticated, remote attackers to...

CVE-2023-1108HIGH7.5ten sam produkt

A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected han...

CVE-2023-3354HIGH7.5ten sam produkt

A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whethe...