CVE-2022-3100

Опубликовано: 28 сент. 2022

Источник: redhat

CVSS3: 7.1

Описание

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

Статус:

Important

Дефект:

CWE-305

https://bugzilla.redhat.com/show_bug.cgi?id=2125404openstack-barbican: access policy bypass via query string injection

7.1 High

CVSS3

CVE-2022-3100

CVSS3: 5.9

ubuntu

около 3 лет назад

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

CVE-2022-3100

CVSS3: 5.9

nvd

около 3 лет назад

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

CVE-2022-3100

CVSS3: 5.9

debian

около 3 лет назад

A flaw was found in the openstack-barbican component. This issue allow ...

ROS-20260129-73-0001

CVSS3: 5.9

redos

10 дней назад

Уязвимость openstack-barbican

GHSA-5hg3-ffv7-g5ff

CVSS3: 5.9

github

около 3 лет назад

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

7.1 High

CVSS3