Redhat » Openstack Essex : Security Vulnerabilities, CVEs,
PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.
Max CVSS
4.4
EPSS Score
0.04%
Published
2013-04-10
Updated
2017-08-29
openstack-utils openstack-db has insecure password creation
Max CVSS
7.5
EPSS Score
0.18%
Published
2019-12-10
Updated
2019-12-14
Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files.
Max CVSS
2.1
EPSS Score
0.04%
Published
2013-04-10
Updated
2013-04-11
3 vulnerabilities found