Openstack Tripleo Heat Templates — known CVE vulnerabilities
Every CVE whose affected-product data names Openstack Tripleo Heat Templates, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2018-10898 — CVSS 8.8 (high): A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default…
CVE-2015-5271 — CVSS 7.5 (high): The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object…
CVE-2015-5303 — CVSS 7.5 (high): The TripleO Heat templates (tripleo-heat-templates), when deployed via the commandline interface, allow remote attackers to spoof OpenStack…
CVE-2021-3585 — CVSS 5.5 (medium): A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with…
CVE-2021-4180 — CVSS 4.3 (medium): An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An…