High severity8.8NVD Advisory· Published Jun 30, 2016· Updated May 6, 2026

CVE-2016-4474

Description

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 (Liberty) director and Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) director (aka overcloud-full) use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

rhn.redhat.com/errata/RHSA-2016-1222.htmlnvdVendor Advisory
access.redhat.com/security/vulnerabilities/2359821nvdVendor Advisory
rhn.redhat.com/errata/RHSA-2016-1223.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000