Openstack Latest Vulnerabilities

November 25

Incorrect ID usage in policy enforcement in OpenStack Neutron through 25.0.0

CVE-2024-53916
OpenStack

October 4

image_source URL lack of checksum validation in OpenStack Ironic

CVE-2024-47211
OpenStack

September 6

Ironic Vulnerability in Image Processing Allows Undesired Behaviors in qemu-img

CVE-2024-44082
OpenStack

August 2

Abandon Command Vulnerability in OpenStack Heat

CVE-2024-7319
OpenStackHeat5MEDIUM

July 24

Unauthorized Access to Sensitive Data via Crafted Images

CVE-2024-40767
OpenStackNova6.5MEDIUM

July 5

Unauthorized Access to Sensitive Data via Custom QCOW2 External Data in OpenStack Cinder, Glance, and Nova

CVE-2024-32498
OpenStackNova6.5MEDIUM

April 22

Remote Code Execution Vulnerability in OpenStack Storlets

CVE-2024-28717
OpenStack

March 18

Murano PL Extension Vulnerability Leads to Sensitive Service Account Information Leak

CVE-2024-29156
OpenStack

August 22

CVE-2022-45582
OpenstackHorizon6.1MEDIUM

March 6

CVE-2022-4134
OpenstackOpenstack2.8LOW

January 26

CVE-2022-47951
OpenstackNova5.7MEDIUM

January 18

CVE-2022-3100
OpenstackRed Hat Openstack Plat...5.9MEDIUM

CVE-2022-47950
OpenstackSwift6.5MEDIUM

December 21

CVE-2022-38060
OpenstackOpenstack8.8HIGH

CVE-2022-38065
OpenstackOpenstack8.8HIGH

September 6

CVE-2022-23451
OpenstackOpenstack/barbican8.1HIGH

September 1

CVE-2022-23452
OpenstackOpenstack/barbican4.9MEDIUM

CVE-2022-2447
OpenstackOpenstack-keystone6.6MEDIUM

August 29

CVE-2022-0718
OpenstackOpenstack/python-oslo....4.9MEDIUM

August 26

CVE-2021-3563
OpenstackKeystone7.4HIGH

CVE-2021-3585
OpenstackOpenstack/tripleo-heat...5.5MEDIUM

August 3

CVE-2022-37394
OpenstackNova3.3LOW

March 2

CVE-2021-3654
OpenstackOpenstack-nova6.1MEDIUM

September 8

CVE-2021-40797
OpenstackNeutron6.5MEDIUM

August 31

CVE-2021-40085
OpenstackNeutron6.5MEDIUM

August 23

CVE-2021-38598
OpenstackNeutron9.1CRITICAL

August 6

CVE-2021-38155
OpenstackKeystone7.5HIGH

June 2

CVE-2017-8761
OpenstackSwift4.3MEDIUM

May 28

CVE-2021-20267
OpenstackOpenstack-neutron7.1HIGH

December 4

CVE-2020-29565
OpenstackHorizon6.1MEDIUM

October 16

CVE-2020-26943
OpenstackBlazar-dashboard9.9CRITICAL

August 26

CVE-2020-17376
OpenstackNova8.3HIGH

May 7

CVE-2020-12689
OpenstackKeystone8.8HIGH

CVE-2020-12690
OpenstackKeystone8.8HIGH

CVE-2020-12691
OpenstackKeystone8.8HIGH

CVE-2020-12692
OpenstackKeystone5.4MEDIUM

March 12

CVE-2020-9543
OpenstackManila8.3HIGH

February 19

CVE-2015-9543
OpenstackNova3.3LOW

December 9

CVE-2019-19687
OpenstackKeystone8.8HIGH

November 22

CVE-2015-5694
OpenstackDesignate6.5MEDIUM

November 1

CVE-2013-2255
OpenstackKeystone5.9MEDIUM

August 28

CVE-2019-15753
OpenstackOs-vif9.1CRITICAL

August 9

CVE-2019-14433
OpenstackNova6.5MEDIUM

June 21

CVE-2016-7404
OpenstackMagnum9.8CRITICAL

April 22

qcow format could expose host filesystem information

CVE-2011-3147
OpenstackNova2.8LOW

April 5

CVE-2019-10876
OpenstackNeutron6.5MEDIUM

March 13

CVE-2019-9735
OpenstackNeutron6.5MEDIUM

December 17

CVE-2018-20170
OpenstackKeystone5.3MEDIUM

February 19

CVE-2017-18191
OpenstackNova7.5HIGH

December 12

CVE-2017-12155
OpenstackOpenstack-tripleo-heat...6.3MEDIUM

December 5

CVE-2017-17051
OpenstackNova8.6HIGH

November 21

CVE-2017-16613
OpenstackSwauth9.8CRITICAL

November 14

CVE-2017-16239
OpenstackNova6.5MEDIUM

August 31

CVE-2015-5695
OpenstackDesignate6.5MEDIUM

August 18

CVE-2017-12440
OpenstackOpenstack7.5HIGH

August 11

CVE-2015-3156
OpenstackTrove5.5MEDIUM

August 9

CVE-2015-2687
OpenstackCompute4.7MEDIUM

June 7

CVE-2015-7514
OpenstackIronic6.5MEDIUM

April 3

CVE-2017-7400
OpenstackHorizon4.8MEDIUM

March 29

CVE-2015-8234
OpenstackGlance5.5MEDIUM

March 21

CVE-2017-7214
OpenstackNova9.8CRITICAL

CVE-2017-7200
OpenstackGlance5.8MEDIUM

January 12

CVE-2016-5737
OpenstackPuppet-gerrit6.1MEDIUM

November 4

CVE-2016-9185
OpenstackHeat4.3MEDIUM

October 7

CVE-2015-5162
OpenstackNova7.5HIGH

September 27

CVE-2016-7498
OpenstackCompute \(nova\)6.5MEDIUM

September 26

CVE-2016-4972
OpenstackPython-muranoclient9.8CRITICAL

July 12

CVE-2016-4428
OpenstackHorizon5.4MEDIUM

June 17

CVE-2015-8914
OpenstackNeutron9.1CRITICAL

CVE-2016-5363
OpenstackNeutron8.2HIGH

CVE-2016-5362
OpenstackNeutron8.2HIGH

April 13

CVE-2016-0757
OpenstackImage Registry And Del...4.3MEDIUM

April 12

CVE-2016-2140
OpenstackNova5.3MEDIUM

April 11

CVE-2015-5303
OpenstackTripleo Heat Templates7.5HIGH

February 3

CVE-2015-7546
OpenstackKeystonemiddleware7.5HIGH

January 29

CVE-2016-0737
OpenstackSwift7.5HIGH

CVE-2016-0738
OpenstackSwift7.5HIGH

January 20

CVE-2015-5295
OpenstackOrchestration Api5.4MEDIUM

January 15

CVE-2015-8749
OpenstackNova5.9MEDIUM

January 12

CVE-2015-7548
OpenstackNova3.5LOW

November 25

CVE-2015-5306
OpenstackIronic Inspector

October 29

CVE-2015-7713
OpenstackNova

October 27

CVE-2015-5240
OpenstackNeutron

October 26

CVE-2015-5286
OpenstackImage Registry And Del...

CVE-2015-5223
OpenstackSwift

CVE-2015-5251
OpenstackImage Registry And Del...

CVE-2015-3280
OpenstackNova

September 8

CVE-2015-3241
OpenstackNova

August 26

CVE-2015-3221
OpenstackNeutron

August 19

CVE-2015-5163
OpenstackGlance

August 14

CVE-2015-3289
OpenstackGlance

May 19

CVE-2015-3988
OpenstackHorizon

May 12

CVE-2015-3646
OpenstackKeystone

April 17

CVE-2015-1852
OpenstackKeystonemiddleware

CVE-2015-1856
OpenstackSwift

April 1

CVE-2015-0259
OpenstackNova

February 24

CVE-2015-1881
OpenstackImage Registry And Del...

CVE-2014-9684
OpenstackImage Registry And Del...

January 21

CVE-2015-1195
OpenstackImage Registry And Del...

December 12

CVE-2014-8124
OpenstackHorizon