Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-2rx4-8xc8-6hf3

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.5

Описание

The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job results.

The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job results.

Ссылки

EPSS

Процентиль: 94%
0.13554
Средний

7.5 High

CVSS3

CVE ID

CVE-2015-7945

Дефекты

CWE-200

Связанные уязвимости

ubuntu логотип

CVE-2015-7945

CVSS3: 7.5
ubuntu
больше 8 лет назад

The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job results.

nvd логотип

CVE-2015-7945

CVSS3: 7.5
nvd
больше 8 лет назад

The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job results.

debian логотип

CVE-2015-7945

CVSS3: 7.5
debian
больше 8 лет назад

The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti befo ...

EPSS

Процентиль: 94%
0.13554
Средний

7.5 High

CVSS3

CVE ID

CVE-2015-7945

Дефекты

CWE-200