CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials.
References
Link Resource
https://access.redhat.com/errata/RHSA-2018:2214 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10898 Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:openstack:tripleo_heat_templates:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-07-30 17:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-10898

Mitre link : CVE-2018-10898

CVE.ORG link : CVE-2018-10898


JSON object : View

Products Affected

openstack

  • tripleo_heat_templates

redhat

  • openstack
CWE
CWE-798

Use of Hard-coded Credentials