Low severityNVD Advisory· Published Oct 8, 2014· Updated Jun 17, 2026
CVE-2014-7231
CVE-2014-7231
Description
The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands, which allows local users to obtain passwords by reading the log.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
oslo.utilsPyPI | < 0.2.0 | 0.2.0 |
Affected products
5Patches
Vulnerability mechanics
References
7- bugs.launchpad.net/oslo.utils/+bug/1345233nvdExploitThird Party AdvisoryWEB
- rhn.redhat.com/errata/RHSA-2014-1939.htmlnvdThird Party AdvisoryWEB
- seclists.org/oss-sec/2014/q3/853nvdMailing ListThird Party AdvisoryWEB
- www.securityfocus.com/bid/70184nvdThird Party AdvisoryVDB EntryWEB
- exchange.xforce.ibmcloud.com/vulnerabilities/96726nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-v933-vx5p-j7w2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2014-7231ghsaADVISORY
News mentions
0No linked articles in our index yet.