Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe
Filtered by product Packstack
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-3703 1 Redhat 1 Packstack 2024-11-21 5.0 MEDIUM N/A
OpenStack PackStack 2012.2.1, when the Open vSwitch (OVS) monolithic plug-in is not used, does not properly set the libvirt_vif_driver configuration option when generating the nova.conf configuration, which causes the firewall to be disabled and allows remote attackers to bypass intended access restrictions.
CVE-2013-1815 1 Redhat 3 Openstack Essex, Openstack Folsom, Packstack 2024-11-21 4.4 MEDIUM N/A
PackStack 2012.2.3 in Red Hat OpenStack Essex and Folsom can create the answer file in insecure directories such as /tmp or the current working directory, which allows local users to modify deployed systems by changing this file.