CVE-2021-3585
MEDIUMopenstack-tripleo-heat-templates - Info Disclosure
Title source: llmDescription
A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager.
References (5)
Scores
CVSS v3
5.5
EPSS
0.0003
EPSS Percentile
9.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-200
CWE-312
Status
published
Affected Products (1)
openstack/tripleo_heat_templates
< 8.4.1
Timeline
Published
Aug 26, 2022
Tracked Since
Feb 18, 2026