Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Openstack Essex
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1815 1 Redhat 3 Openstack Essex, Openstack Folsom, Packstack 2024-11-21 4.4 MEDIUM N/A
PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.
CVE-2013-1793 1 Redhat 2 Openstack, Openstack Essex 2024-11-21 5.0 MEDIUM 7.5 HIGH
openstack-utils openstack-db has insecure password creation
CVE-2012-6120 1 Redhat 2 Openstack Essex, Openstack Folsom 2024-11-21 2.1 LOW N/A
Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files.