rpm package
suse/openstack-horizon-plugin-gbp-ui&distro=SUSE OpenStack Cloud 9
pkg:rpm/suse/openstack-horizon-plugin-gbp-ui&distro=SUSE%20OpenStack%20Cloud%209
Vulnerabilities (36)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-3100 | — | < 14.0.1~dev6-3.15.1 | 14.0.1~dev6-3.15.1 | Jan 18, 2023 | A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API. | ||
| CVE-2021-22141 | — | < 12.0.1~dev5-3.6.1 | 12.0.1~dev5-3.6.1 | Nov 18, 2022 | An open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user visits a maliciously crafted URL, it could result in Kibana redirecting the user to an arbitrary website. | ||
| CVE-2022-23451 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Sep 6, 2022 | An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete p | ||
| CVE-2022-23452 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Sep 1, 2022 | An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to consume protected resources and cause a denial of service. | ||
| CVE-2022-33891 | — | KEV | < 14.0.1~dev6-3.15.1 | 14.0.1~dev6-3.15.1 | Jul 18, 2022 | The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can | |
| CVE-2022-34265 | — | < 14.0.1~dev4-3.12.1 | 14.0.1~dev4-3.12.1 | Jul 4, 2022 | An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe l | ||
| CVE-2022-29970 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | May 2, 2022 | Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files. | ||
| CVE-2022-28346 | — | < 14.0.1~dev4-3.12.1 | 14.0.1~dev4-3.12.1 | Apr 12, 2022 | An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs. | ||
| CVE-2022-24790 | — | < 14.0.1~dev4-3.12.1 | 14.0.1~dev4-3.12.1 | Mar 30, 2022 | Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request sta | ||
| CVE-2022-22817 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Jan 7, 2022 | PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used. | ||
| CVE-2022-22816 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Jan 7, 2022 | path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path. | ||
| CVE-2022-22815 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Jan 7, 2022 | path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. | ||
| CVE-2021-44716 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Jan 1, 2022 | net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests. | ||
| CVE-2021-43818 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Dec 13, 2021 | lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a s | ||
| CVE-2021-43813 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Dec 10, 2021 | Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files wi | ||
| CVE-2021-41184 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Oct 26, 2021 | jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option | ||
| CVE-2021-41183 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Oct 26, 2021 | jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text | ||
| CVE-2021-41182 | — | < 14.0.1~dev3-3.9.1 | 14.0.1~dev3-3.9.1 | Oct 26, 2021 | jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altFi | ||
| CVE-2021-41136 | — | < 12.0.1~dev5-3.6.1 | 12.0.1~dev5-3.6.1 | Oct 12, 2021 | Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to versions 5.5.1 and 4.3.9, using `puma` with a proxy which forwards HTTP header values which contain the LF character could allow HTTP request smugggling. A client could smuggle a request through a proxy, causing the p | ||
| CVE-2021-39226 | — | KEV | < 14.0.1~dev4-3.12.1 | 14.0.1~dev4-3.12.1 | Oct 5, 2021 | Grafana is an open source data visualization platform. In affected versions unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key. If the snapshot "public |
- CVE-2022-3100Jan 18, 2023affected < 14.0.1~dev6-3.15.1fixed 14.0.1~dev6-3.15.1
A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.
- CVE-2021-22141Nov 18, 2022affected < 12.0.1~dev5-3.6.1fixed 12.0.1~dev5-3.6.1
An open redirect flaw was found in Kibana versions before 7.13.0 and 6.8.16. If a logged in user visits a maliciously crafted URL, it could result in Kibana redirecting the user to an arbitrary website.
- CVE-2022-23451Sep 6, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete p
- CVE-2022-23452Sep 1, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to consume protected resources and cause a denial of service.
- affected < 14.0.1~dev6-3.15.1fixed 14.0.1~dev6-3.15.1
The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. With an authentication filter, this checks whether a user has access permissions to view or modify the application. If ACLs are enabled, a code path in HttpSecurityFilter can
- CVE-2022-34265Jul 4, 2022affected < 14.0.1~dev4-3.12.1fixed 14.0.1~dev4-3.12.1
An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe l
- CVE-2022-29970May 2, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files.
- CVE-2022-28346Apr 12, 2022affected < 14.0.1~dev4-3.12.1fixed 14.0.1~dev4-3.12.1
An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.
- CVE-2022-24790Mar 30, 2022affected < 14.0.1~dev4-3.12.1fixed 14.0.1~dev4-3.12.1
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request sta
- CVE-2022-22817Jan 7, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.
- CVE-2022-22816Jan 7, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
- CVE-2022-22815Jan 7, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.
- CVE-2021-44716Jan 1, 2022affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
- CVE-2021-43818Dec 13, 2021affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a s
- CVE-2021-43813Dec 10, 2021affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files wi
- CVE-2021-41184Oct 26, 2021affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option
- CVE-2021-41183Oct 26, 2021affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text
- CVE-2021-41182Oct 26, 2021affected < 14.0.1~dev3-3.9.1fixed 14.0.1~dev3-3.9.1
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altFi
- CVE-2021-41136Oct 12, 2021affected < 12.0.1~dev5-3.6.1fixed 12.0.1~dev5-3.6.1
Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to versions 5.5.1 and 4.3.9, using `puma` with a proxy which forwards HTTP header values which contain the LF character could allow HTTP request smugggling. A client could smuggle a request through a proxy, causing the p
- affected < 14.0.1~dev4-3.12.1fixed 14.0.1~dev4-3.12.1
Grafana is an open source data visualization platform. In affected versions unauthenticated and authenticated users are able to view the snapshot with the lowest database key by accessing the literal paths: /dashboard/snapshot/:key, or /api/snapshots/:key. If the snapshot "public
Page 1 of 2