Openstack - Tripleo Heat Templates CVE

Filtered by vendor Openstack Subscribe

Filtered by product Tripleo Heat Templates

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-4180	2 Openstack, Redhat	2 Tripleo Heat Templates, Openstack	2022-07-25	4.0 MEDIUM	4.3 MEDIUM
An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the www_authenticate_uri parameter (which is visible to all end users) in configuration files. This would give sensitive information which may aid in additional system exploitation. This flaw affects openstack-tripleo-heat-templates versions prior to 11.6.1.

Vulnerabilities (CVE)