Описание
In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information.
A flaw was found in the Murano component of OpenStack. This vulnerability allows ordinary users capable of importing and deploying app packages to access sensitive information within OpenStack services. Specifically, through this exploit, unauthorized users can obtain Murano service account credentials, potentially escalating their privileges to an administrator level. Subsequently, unauthorized users can gain complete control over various resources, including user roles, hosts, and networks. The exploit allows access to the Murano service's oslo configuration storage, thereby exposing critical Murano service account credentials, and granting unauthorized users administrative privileges.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 16.1 | openstack-heat | Out of support scope | ||
| Red Hat OpenStack Platform 16.1 | openstack-tripleo-heat-templates | Out of support scope | ||
| Red Hat OpenStack Platform 16.2 | openstack-heat | Affected | ||
| Red Hat OpenStack Platform 17.1 | openstack-heat | Affected | ||
| Red Hat OpenStack Platform 17.1 | rhel8/python-yaql | Affected | ||
| Red Hat OpenStack Platform 17.1 | rhel9/python-yaql | Affected | ||
| Red Hat OpenStack Platform 18.0 | openstack-heat | Affected | ||
| Red Hat OpenStack Platform 16.2 | openstack-tripleo-common | Fixed | RHSA-2024:4053 | 24.06.2024 |
| Red Hat OpenStack Platform 16.2 | openstack-tripleo-heat-templates | Fixed | RHSA-2024:4053 | 24.06.2024 |
| Red Hat OpenStack Platform 16.2 | python-yaql | Fixed | RHSA-2024:4053 | 24.06.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
8.4 High
CVSS3
Связанные уязвимости
In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information.
In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information.
In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, th ...
Уязвимость компонента YAQL интерфейса для управления конфигурацией сервисов в облачной платформе OpenStack Murano, связанная с отсутствием защиты служебных данных, позволяющая нарушителю раскрыть защищаемую информацию
EPSS
8.4 High
CVSS3