Описание
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server's certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 13 (Queens) | python-scciclient | Out of support scope | ||
| Ironic content for Red Hat OpenShift Container Platform 4.12 | crudini | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | future | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | openstack-ironic | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | openstack-ironic-inspector | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | openstack-ironic-python-agent | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | openstack-macros | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | pyflakes | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | pyOpenSSL | Fixed | RHSA-2022:7398 | 17.01.2023 |
| Ironic content for Red Hat OpenShift Container Platform 4.12 | pysnmp | Fixed | RHSA-2022:7398 | 17.01.2023 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.4 High
CVSS3
Связанные уязвимости
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server's certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server's certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
A flaw was found in the python-scciclient when making an HTTPS connect ...
python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
EPSS
7.4 High
CVSS3