Openstack

259 tracked vulnerabilities.

CVE-2015-5694 MEDIUM
Designate - Info Disclosure
Nov 22, 2019
CVSS 6.5
EPSS 0.01
CVE-2012-1572 HIGH
Openstack Keystone - Denial of Service
Nov 12, 2019
CVSS 7.5
EPSS 0.00
CVE-2013-2255 MEDIUM
Openstack Compute < 0.4.0 - Improper Certificate Validation
Nov 01, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-15753 CRITICAL
Openstack Os-vif < 1.15.2 - Resource Allocation Without Limits
Aug 28, 2019
CVSS 9.1
EPSS 0.01
CVE-2019-14433 MEDIUM
OpenStack Nova <17.0.12-19.0.2 - Info Disclosure
Aug 09, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-10141 HIGH
openstack-ironic-inspector <8.2.1 - SQL Injection
Jul 30, 2019
CVSS 8.3
EPSS 0.01
CVE-2016-7404 CRITICAL
Openstack Magnum < 5.0.0 - Information Disclosure
Jun 21, 2019
CVSS 9.8
EPSS 0.03
CVE-2019-3895 HIGH
Openstack Octavia < 0.9.0 - Improper Access Control
Jun 03, 2019
CVSS 8.0
EPSS 0.01
CVE-2011-3147 HIGH
Openstack Nova < 2012.1 - Information Disclosure
Apr 22, 2019
CVSS 8.6
EPSS 0.00
CVE-2019-10876 MEDIUM
OpenStack Neutron <11.0.7-13.0.3 - DoS
Apr 05, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-3830 HIGH
Openstack Ceilometer < 11.01 - Log Information Exposure
Mar 26, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-16856 MEDIUM
Red Hat Openstack Platform Director - Info Disclosure
Mar 26, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-9735 MEDIUM
OpenStack Neutron <13.0.3 - Privilege Escalation
Mar 13, 2019
CVSS 6.5
EPSS 0.02
CVE-2018-20170 MEDIUM
OpenStack Keystone <14.0.1 - Info Disclosure
Dec 17, 2018
CVSS 5.3
EPSS 0.00
CVE-2018-14636 MEDIUM
Open vSwitch - SSRF
Sep 10, 2018
CVSS 5.3
EPSS 0.00
CVE-2018-14635 MEDIUM
OpenStack Neutron <13.0.0.0b2, <12.0.3, <11.0.5 - DoS
Sep 10, 2018
CVSS 6.5
EPSS 0.00
CVE-2017-15139 HIGH
Openstack Cinder < 12.0.4-7 - Information Disclosure
Aug 27, 2018
CVSS 7.5
EPSS 0.00
CVE-2017-2627 HIGH
Redhat Openstack - Path Traversal
Aug 22, 2018
CVSS 8.2
EPSS 0.00
CVE-2016-8611 MEDIUM
Openstack Glance - DoS
Jul 31, 2018
CVSS 4.3
EPSS 0.01
CVE-2018-14432 MEDIUM
OpenStack Keystone <13.0.0 - Auth Bypass
Jul 31, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-10898 HIGH
Redhat Openstack < 8.0.2-40 - Hard-coded Credentials
Jul 30, 2018
CVSS 8.8
EPSS 0.00
CVE-2017-2621 MEDIUM
OpenStack Orchestration <8.0.0, 6.1.0, 7.0.2 - Info Disclosure
Jul 27, 2018
CVSS 5.5
EPSS 0.00
CVE-2017-7543 MEDIUM
Openstack Neutron < 7.2.0-12.1 - Race Condition
Jul 26, 2018
CVSS 5.3
EPSS 0.00
CVE-2017-2592 MEDIUM
Openstack Oslo.middleware < 3.8.0 - Log Information Exposure
May 08, 2018
CVSS 5.9
EPSS 0.00
CVE-2016-9590 MEDIUM
Openstack Puppet-swift < 8.2.1 - Information Disclosure
Apr 26, 2018
CVSS 6.5
EPSS 0.00
Products
keystone 38 nova 38 folsom 25 neutron 25 horizon 22 essex 15 image_registry_and_delivery_service_\(glance\) 15 grizzly 14 swift 13 compute 12 havana 11 glance 11 cinder 9 python-keystoneclient 7 heat 7 barbican 5 tripleo_heat_templates 5 icehouse 4 trove 3 keystonemiddleware 3 keystone_essex 2 oslo 2 ceilometer 2 cloud_magnum_orchestration 2 diablo 2 octavia 2 tripleo_ansible 2 designate 2 murano 2 magnum 2
Quick Filters
Critical CVEs With Exploits In CISA KEV