CVE-2023-1633

Опубликовано: 24 сент. 2023

Источник: nvd

CVSS3: 6.6

CVSS3: 5.5

EPSS Низкий

Описание

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

Ссылки

https://access.redhat.com/security/cve/CVE-2023-1633
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2181761
Issue Tracking
Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-1633
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2181761
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openstack:barbican:-:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*

cpe:2.3:a:redhat:openstack_platform:17.0:*:*:*:*:*:*:*

EPSS

Процентиль: 6%

0.00024

Низкий

6.6 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-200

CWE-522

Связанные уязвимости

CVE-2023-1633

CVSS3: 6.6

ubuntu

больше 2 лет назад

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

CVE-2023-1633

CVSS3: 6.6

redhat

почти 3 года назад

A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file, gaining access to sensitive credentials.

CVE-2023-1633

CVSS3: 6.6

debian

больше 2 лет назад

A credentials leak flaw was found in OpenStack Barbican. This flaw all ...

ROS-20260129-73-0002

CVSS3: 5.5

redos

10 дней назад

Уязвимость openstack-barbican

GHSA-6qqp-4vm3-359v

CVSS3: 6.6

github

больше 2 лет назад

OpenStack Barbican credential leak flaw

EPSS

Процентиль: 6%

0.00024

Низкий

6.6 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-200

CWE-522