Openstack

259 tracked vulnerabilities.

CVE-2016-9599 HIGH
Openstack Puppet-tripleo - Improper Access Control
Apr 24, 2018
CVSS 7.1
EPSS 0.00
CVE-2017-18191 HIGH
Openstack Nova < 15.1.0 - Denial of Service
Feb 19, 2018
CVSS 7.5
EPSS 0.02
CVE-2017-18017 CRITICAL
Linux Kernel < 3.2.99 - Use After Free
Jan 03, 2018
CVSS 9.8
EPSS 0.38
CVE-2017-17051 HIGH
OpenStack Nova 16.0.3 - DoS
Dec 05, 2017
CVSS 8.6
EPSS 0.01
CVE-2017-16613 CRITICAL
OpenStack Swauth <1.2.0 - Auth Bypass
Nov 21, 2017
CVSS 9.8
EPSS 0.02
CVE-2017-16239 MEDIUM
OpenStack Nova <14.0.9, <15.0.7, <16.0.2 - Privilege Escalation
Nov 14, 2017
CVSS 6.5
EPSS 0.00
CVE-2017-7549 MEDIUM
Red Hat OpenStack - Symbolic-Link Attack
Sep 21, 2017
CVSS 6.4
EPSS 0.00
CVE-2015-5695 MEDIUM
OpenStack Kilo - DoS
Aug 31, 2017
CVSS 6.5
EPSS 0.02
CVE-2017-12440 HIGH
Aodh < Pike-rc1 - Auth Bypass
Aug 18, 2017
CVSS 7.5
EPSS 0.01
CVE-2015-3156 MEDIUM
Trove - Buffer Overflow
Aug 11, 2017
CVSS 5.5
EPSS 0.00
CVE-2015-2687 MEDIUM
Openstack Compute < 15.0.0.0b1 - Improper Access Control
Aug 09, 2017
CVSS 4.7
EPSS 0.00
CVE-2017-1000366 HIGH
glibc <2.25 - RCE
Jun 19, 2017
CVSS 7.8
EPSS 0.08
CVE-2015-7514 MEDIUM
OpenStack Ironic <4.2.1 - Info Disclosure
Jun 07, 2017
CVSS 6.5
EPSS 0.00
CVE-2016-6519 MEDIUM
Openstack Manila <2.5.1 - XSS
Apr 21, 2017
CVSS 5.4
EPSS 0.00
CVE-2017-5936 HIGH
OpenStack Nova-LXD <13.1.1 - Privilege Escalation
Apr 12, 2017
CVSS 7.5
EPSS 0.02
CVE-2017-7400 MEDIUM
OpenStack Horizon <11.0.0 - XSS
Apr 03, 2017
CVSS 4.8
EPSS 0.00
CVE-2015-8234 MEDIUM
OpenStack Glance 11.0.0 - Auth Bypass
Mar 29, 2017
CVSS 5.5
EPSS 0.00
CVE-2017-7214 CRITICAL
OpenStack Nova <15.0.1 - Info Disclosure
Mar 21, 2017
CVSS 9.8
EPSS 0.01
CVE-2017-7200 MEDIUM
OpenStack Glance < Newton - SSRF
Mar 21, 2017
CVSS 5.8
EPSS 0.00
CVE-2016-5737 MEDIUM
Openstack Puppet - XSS
Jan 12, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-9185 MEDIUM
OpenStack Heat <=5.0.3, >=6.0.0 <=6.1.0, ==7.0.0 - SSRF
Nov 04, 2016
CVSS 4.3
EPSS 0.01
CVE-2015-5162 HIGH
Openstack Cinder < 11.0.0 - Resource Management Error
Oct 07, 2016
CVSS 7.5
EPSS 0.04
CVE-2016-7498 MEDIUM
Openstack Compute (nova) - Resource Management Error
Sep 27, 2016
CVSS 6.5
EPSS 0.02
CVE-2016-4972 CRITICAL
Openstack Mitaka-murano < 2.0.0 - Improper Input Validation
Sep 26, 2016
CVSS 9.8
EPSS 0.04
CVE-2016-4428 MEDIUM
OpenStack Horizon <9.0.1 - XSS
Jul 12, 2016
CVSS 5.4
EPSS 0.01
Products
keystone 38 nova 38 folsom 25 neutron 25 horizon 22 essex 15 image_registry_and_delivery_service_\(glance\) 15 grizzly 14 swift 13 compute 12 havana 11 glance 11 cinder 9 python-keystoneclient 7 heat 7 barbican 5 tripleo_heat_templates 5 icehouse 4 trove 3 keystonemiddleware 3 keystone_essex 2 oslo 2 ceilometer 2 cloud_magnum_orchestration 2 diablo 2 octavia 2 tripleo_ansible 2 designate 2 murano 2 magnum 2
Quick Filters
Critical CVEs With Exploits In CISA KEV