rpm package
suse/openstack-glance-doc&distro=SUSE OpenStack Cloud 7
pkg:rpm/suse/openstack-glance-doc&distro=SUSE%20OpenStack%20Cloud%207
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-7400 | Med | 4.8 | < 13.0.1~a0~dev6-3.3 | 13.0.1~a0~dev6-3.3 | Apr 3, 2017 | OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping. | |
| CVE-2017-7214 | Cri | 9.8 | < 13.0.1~a0~dev6-3.3 | 13.0.1~a0~dev6-3.3 | Mar 21, 2017 | An issue was discovered in exception_wrapper.py in OpenStack Nova 13.x through 13.1.3, 14.x through 14.0.4, and 15.x through 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization |
- affected < 13.0.1~a0~dev6-3.3fixed 13.0.1~a0~dev6-3.3
OpenStack Horizon 9.x through 9.1.1, 10.x through 10.0.2, and 11.0.0 allows remote authenticated administrators to conduct XSS attacks via a crafted federation mapping.
- affected < 13.0.1~a0~dev6-3.3fixed 13.0.1~a0~dev6-3.3
An issue was discovered in exception_wrapper.py in OpenStack Nova 13.x through 13.1.3, 14.x through 14.0.4, and 15.x through 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization