Redhat Openstack Platform — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Openstack Platform, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (39)
CVE-2020-10731 — CVSS 9.9 (critical): A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This…
CVE-2022-2132 — CVSS 8.6 (high): A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by…
CVE-2023-1668 — CVSS 8.2 (high): A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action…
CVE-2017-15114 — CVSS 8.1 (high): When libvirtd is configured by OSP director (tripleo-heat-templates) to use the TLS transport it defaults to the same certificate authority…
CVE-2022-23451 — CVSS 8.1 (high): An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user…
CVE-2024-8007 — CVSS 8.1 (high): A flaw was found in the openstack-tripleo-common component of the Red Hat OpenStack Platform (RHOSP) director. This vulnerability allows an…
CVE-2023-1108 — CVSS 7.5 (high): A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status updated in…
CVE-2022-3596 — CVSS 7.5 (high): An information leak was found in OpenStack's undercloud. This flaw allows unauthenticated, remote attackers to inspect sensitive data after…
CVE-2020-25658 — CVSS 7.5 (high): It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption API to…
CVE-2023-3354 — CVSS 7.5 (high): A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of…
CVE-2021-20270 — CVSS 7.5 (high): An infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when performing syntax highlighting of a…
CVE-2023-1625 — CVSS 7.4 (high): An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker to use the 'stack show'…
CVE-2021-3563 — CVSS 7.4 (high): A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some…
CVE-2020-27781 — CVSS 7.1 (high): User credentials can be manipulated and stolen by Native CephFS consumers of OpenStack Manila, resulting in potential privilege escalation…
CVE-2021-20267 — CVSS 7.1 (high): A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a…
CVE-2020-14365 — CVSS 7.1 (high): A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing…
CVE-2023-1633 — CVSS 6.6 (medium): A credentials leak flaw was found in OpenStack Barbican. This flaw allows a local authenticated attacker to read the configuration file…
CVE-2022-2447 — CVSS 6.6 (medium): A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token…
CVE-2020-1690 — CVSS 6.5 (medium): An improper authorization flaw was discovered in openstack-selinux's applied policy where it does not prevent a non-root user in a…
CVE-2021-20257 — CVSS 6.5 (medium): An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in…
CVE-2021-3979 — CVSS 6.5 (medium): A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an…
CVE-2022-3277 — CVSS 6.5 (medium): An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of…
CVE-2019-12067 — CVSS 6.5 (medium): The ahci_commit_buf function in ide/ahci.c in QEMU allows attackers to cause a denial of service (NULL dereference) when the command header…
CVE-2021-3654 — CVSS 6.1 (medium): A vulnerability was found in openstack-nova's console proxy, noVNC. By crafting a malicious URL, noVNC could be made to redirect to any…
CVE-2023-1932 — CVSS 6.1 (medium): A flaw was found in hibernate-validator's 'isValid' method in the org.hibernate.validator.internal.constraintvalidators.hv.SafeHtmlValidator…
CVE-2023-1636 — CVSS 6.0 (medium): A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one…
CVE-2023-48795 — CVSS 5.9 (medium): The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to…
CVE-2022-3100 — CVSS 5.9 (medium): A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.
CVE-2023-6725 — CVSS 5.5 (medium): An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND…
CVE-2022-0866 — CVSS 5.3 (medium): This is a concurrency issue that can result in the wrong caller principal being returned from the session context of an EJB that is…
CVE-2023-5625 — CVSS 5.3 (medium): A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch…
CVE-2024-7319 — CVSS 5.0 (medium): An incomplete fix for CVE-2023-1625 was found in openstack-heat. Sensitive information may possibly be disclosed through the OpenStack…
CVE-2022-0718 — CVSS 4.9 (medium): A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect masking in…
CVE-2022-23452 — CVSS 4.9 (medium): An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container…
CVE-2022-3261 — CVSS 4.4 (medium): A flaw was found in OpenStack. Multiple components show plain-text passwords in /var/log/messages during the OpenStack overcloud update…
CVE-2023-3637 — CVSS 4.3 (medium): An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of…
CVE-2020-25743 — CVSS 3.2 (low): hw/ide/pci.c in QEMU before 5.1.1 can trigger a NULL pointer dereference because it lacks a pointer check before an ide_cancel_dma_sync…
CVE-2020-14394 — CVSS 3.2 (low): An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB)…