GHSA-6qqp-4vm3-359v

Опубликовано: 24 сент. 2023

Источник: github

Github: Прошло ревью

CVSS3: 6.6

Описание

OpenStack Barbican credential leak flaw

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

Ссылки

Пакеты

Наименование

barbican

pip

Затронутые версииВерсия исправления

<= 16.0.0

Отсутствует

EPSS

Процентиль: 6%

0.00024

Низкий

6.6 Medium

CVSS3

CVE ID

CVE-2023-1633

Дефекты

CWE-522

Связанные уязвимости

CVE-2023-1633

CVSS3: 6.6

ubuntu

больше 2 лет назад

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

CVE-2023-1633

CVSS3: 6.6

redhat

почти 3 года назад

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

CVE-2023-1633

CVSS3: 6.6

nvd

больше 2 лет назад

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

CVE-2023-1633

CVSS3: 6.6

debian

больше 2 лет назад

A credentials leak flaw was found in OpenStack Barbican. This flaw all ...

ROS-20260129-73-0002

CVSS3: 5.5

redos

9 дней назад

Уязвимость openstack-barbican

EPSS

Процентиль: 6%

0.00024

Низкий

6.6 Medium

CVSS3

CVE ID

CVE-2023-1633

Дефекты

CWE-522