Описание
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | code not present |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | not-affected | code not present |
| esm-apps/jammy | not-affected | code not present |
| esm-apps/noble | not-affected | code not present |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.1.0-0ubuntu1 |
| esm-apps/bionic | released | 0.4.0-0ubuntu1+esm1 |
| esm-apps/focal | not-affected | 2.1.0-0ubuntu1 |
| esm-apps/jammy | not-affected | 2.1.0-0ubuntu1 |
| esm-apps/noble | not-affected | 2.1.0-0ubuntu1 |
| focal | not-affected | 2.1.0-0ubuntu1 |
| jammy | not-affected | 2.1.0-0ubuntu1 |
| noble | not-affected | 2.1.0-0ubuntu1 |
| oracular | not-affected | 2.1.0-0ubuntu1 |
| plucky | not-affected | 2.1.0-0ubuntu1 |
Показывать по
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.
An information-exposure vulnerability was discovered where openstack-m ...
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit this flaw to access sensitive user information.
Уязвимость компонента openstack-mistral платформа для построения облачных решений OpenStack Platform, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
EPSS
2.1 Low
CVSS2
5.5 Medium
CVSS3