Critical severity9.8NVD Advisory· Published Mar 21, 2017· Updated Jun 17, 2026
CVE-2017-7214
CVE-2017-7214
Description
An issue was discovered in exception_wrapper.py in OpenStack Nova 13.x through 13.1.3, 14.x through 14.0.4, and 15.x through 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization tokens.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
novaPyPI | >= 13.0.0, < 13.1.4 | 13.1.4 |
novaPyPI | >= 14.0.0, < 14.0.5 | 14.0.5 |
novaPyPI | >= 15.0.1, < 15.0.2 | 15.0.2 |
Affected products
30cpe:2.3:a:openstack:nova:13.0.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:openstack:nova:13.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:13.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:13.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:13.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:13.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:14.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:14.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:14.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:14.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:14.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:15.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:openstack:nova:15.0.1:*:*:*:*:*:*:*
- ghsa-coords18 versionspkg:pypi/novapkg:rpm/suse/openstack-ceilometer&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-ceilometer-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-cinder&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-cinder-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-dashboard&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-glance&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-glance-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-heat&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-heat-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-keystone&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-keystone-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-magnum&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-magnum-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-manila&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-manila-doc&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-nova&distro=SUSE%20OpenStack%20Cloud%207pkg:rpm/suse/openstack-nova-doc&distro=SUSE%20OpenStack%20Cloud%207
>= 13.0.0, < 13.1.4+ 17 more
- (no CPE)range: >= 13.0.0, < 13.1.4
- (no CPE)range: < 7.0.4~a0~dev7-3.1
- (no CPE)range: < 7.0.4~a0~dev7-3.2
- (no CPE)range: < 9.1.5~a0~dev1-3.1
- (no CPE)range: < 9.1.5~a0~dev1-3.1
- (no CPE)range: < 10.0.4~a0~dev2-3.1
- (no CPE)range: < 13.0.1~a0~dev6-3.1
- (no CPE)range: < 13.0.1~a0~dev6-3.3
- (no CPE)range: < 7.0.4~a0~dev4-4.1
- (no CPE)range: < 7.0.4~a0~dev4-4.2
- (no CPE)range: < 10.0.2~a0~dev2-6.1
- (no CPE)range: < 10.0.2~a0~dev2-6.2
- (no CPE)range: < 3.1.2~a0~dev22-13.1
- (no CPE)range: < 3.1.2~a0~dev22-13.1
- (no CPE)range: < 3.0.1~a0~dev27-3.1
- (no CPE)range: < 3.0.1~a0~dev27-3.1
- (no CPE)range: < 14.0.6~a0~dev16-3.1
- (no CPE)range: < 14.0.6~a0~dev16-3.3
Patches
Vulnerability mechanics
References
10- launchpad.net/bugs/1673569nvdPatchThird Party AdvisoryWEB
- www.securityfocus.com/bid/96998nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-f4g4-cj8f-3cr9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-7214ghsaADVISORY
- access.redhat.com/errata/RHSA-2017:1508nvdWEB
- access.redhat.com/errata/RHSA-2017:1595nvdWEB
- github.com/openstack/nova/commit/3f985f1eda6f29180878a3d21c20c5057179486aghsaWEB
- github.com/openstack/nova/commit/acb19160d4d348e29a21ad57c61c7369352c4d1cghsaWEB
- github.com/openstack/nova/commit/c2c91ce44592fc5dc2aacee1cf7f5b5cfd2e9a0aghsaWEB
- github.com/openstack/nova/commit/e193201fa1de5b08b29adefd8c149935c5529598ghsaWEB
News mentions
0No linked articles in our index yet.