HIGH🇵🇱 Wersja polska

CVE-2022-3596

CVSS 7.5v3.1pub. 2023-09-20upd. 2024-11-21

An information leak was found in OpenStack's undercloud. This flaw allows unauthenticated, remote attackers to inspect sensitive data after discovering the IP address of the undercloud, possibly leading to compromising private information, including administrator access credentials.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Red Hat Openstack Platform

    APP
    Redhat
    13.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-10731CRITICAL9.9ten sam produkt

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does no...

CVE-2024-8007HIGH8.1ten sam produkt

A flaw was found in the openstack-tripleo-common component of the Red Hat OpenStack Platform (RHOSP) director....

CVE-2023-1625HIGH7.4ten sam produkt

An information leak was discovered in OpenStack heat. This issue could allow a remote, authenticated attacker ...

CVE-2023-1108HIGH7.5ten sam produkt

A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected han...

CVE-2023-3354HIGH7.5ten sam produkt

A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whethe...