OpenStack TripleO Ansible

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:openstack:tripleo_ansible:-:*:*:*:*:*:*:*

part: a version: - update: *

VendorOpenstack (7b0cf974-b2b5-592e-bdf4-6953805ef02a)
ProductTripleo Ansible (9750e9de-4c22-5b90-b920-184be9d03ded)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/openstack/tripleo-ansible purl2cpe 2026-06-01 10:17:03.712859
pkg:pypi/tripleo-ansible purl2cpe 2026-06-01 10:17:03.712862

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-3146 vulnerable 2026-06-03 14:47:52.326135 Details available
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file. This issue leads to information disclosure of important configuration details from the OpenStack deployment.
Published: 2023-03-23T00:00:00.000Z
Updated: 2025-02-25T15:41:22.806Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-3101 vulnerable 2026-06-03 14:47:52.238918 Details available
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file, leading to information disclosure of important configuration details from the OpenStack deployment.
Published: 2023-03-23T00:00:00.000Z
Updated: 2025-02-25T15:42:13.130Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.