Описание
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 2.1 | openstack-keystone | Affected | ||
| RHOS Essex Release | openstack-keystone | Will not fix | ||
| OpenStack Folsom for RHEL 6 | openstack-keystone | Fixed | RHSA-2013:0806 | 09.05.2013 |
Показывать по
Дополнительная информация
Статус:
EPSS
2.1 Low
CVSS2
Связанные уязвимости
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode loggin ...
OpenStack Keystone Sensitive information disclosure via log files
EPSS
2.1 Low
CVSS2