Описание
Apache CloudStack before 4.5.2 might allow remote authenticated administrators to obtain sensitive password information for root accounts of virtual machines via unspecified vectors related to API calls.
Apache CloudStack before 4.5.2 might allow remote authenticated administrators to obtain sensitive password information for root accounts of virtual machines via unspecified vectors related to API calls.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-3251
- https://blogs.apache.org/cloudstack/entry/two_late_announced_security_advisories
- http://mail-archives.apache.org/mod_mbox/cloudstack-users/201602.mbox/%3C94DD4CB4-F718-4F79-A934-3D677E497114%40gmail.com%3E
- http://www.securityfocus.com/archive/1/537458/100/0/threaded
Связанные уязвимости
CVSS3: 4.9
nvd
почти 10 лет назад
Apache CloudStack before 4.5.2 might allow remote authenticated administrators to obtain sensitive password information for root accounts of virtual machines via unspecified vectors related to API calls.