Описание
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 9.4.4-1 |
| cosmic | not-affected | 9.4.4-1 |
| devel | not-affected | 9.4.4-1 |
| disco | not-affected | 9.4.4-1 |
| eoan | not-affected | 9.4.4-1 |
| esm-apps/bionic | released | 9.4.4-1 |
| esm-apps/focal | not-affected | 9.4.4-1 |
| esm-apps/jammy | not-affected | 9.4.4-1 |
| esm-apps/noble | not-affected | 9.4.4-1 |
Показывать по
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions.
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions.
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an informat ...
puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions.
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3