exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2016-4985

больше 9 лет назад

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

CVSS3: 7.5

EPSS: Низкий

CVE-2016-4985

больше 9 лет назад

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-4985

больше 9 лет назад

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.

CVSS3: 7.5

EPSS: Низкий

CVE-2016-4985

больше 9 лет назад

The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and ...

CVSS3: 7.5

EPSS: Низкий

GHSA-f7cr-7c2c-fm8r

больше 3 лет назад

OpenStack Ironic Exposure of Sensitive Information to an Unauthorized Actor

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2016-4985 The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.	CVSS3: 7.5	1% Низкий	больше 9 лет назад
CVE-2016-4985 The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.	CVSS3: 5.9	1% Низкий	больше 9 лет назад
CVE-2016-4985 The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and 5.x before 5.1.2 (Mitaka) allows remote attackers to obtain sensitive information about a registered node by leveraging knowledge of the MAC address of a network card belonging to that node and sending a crafted POST request to the v1/drivers/$DRIVER_NAME/vendor_passthru resource.	CVSS3: 7.5	1% Низкий	больше 9 лет назад
CVE-2016-4985 The ironic-api service in OpenStack Ironic before 4.2.5 (Liberty) and ...	CVSS3: 7.5	1% Низкий	больше 9 лет назад
GHSA-f7cr-7c2c-fm8r OpenStack Ironic Exposure of Sensitive Information to an Unauthorized Actor	CVSS3: 7.5	1% Низкий	больше 3 лет назад

Уязвимостей на страницу