OpenStack 07132017
Approved changes feed: RSS · Atom
cpe:2.3:a:openstack:openstack:07132017:*:*:*:*:*:*:*
part: a version: 07132017 update: *
| Vendor | Openstack (7b0cf974-b2b5-592e-bdf4-6953805ef02a) |
|---|---|
| Product | Openstack (9adabfbe-e2ac-5a91-b247-49f9f2a0686f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:cpan/net::openstack::client |
purl2cpe | 2026-06-01 10:17:02.895007 |
pkg:gem/openstack |
purl2cpe | 2026-06-01 10:17:02.895010 |
pkg:github/openstack/openstack |
purl2cpe | 2026-06-01 10:17:02.895013 |
pkg:maven/io.snamp.supervisors/openstack |
purl2cpe | 2026-06-01 10:17:02.895016 |
pkg:nuget/OpenStack-Client |
purl2cpe | 2026-06-01 10:17:02.895018 |
pkg:rpm/opensuse/openstack-suse |
purl2cpe | 2026-06-01 10:17:02.895021 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2017-12440 |
vulnerable | 2026-06-03 14:36:36.055097 |
Details available
Aodh as packaged in Openstack Ocata and Newton before change-ID I8fd11a7f9fe3c0ea5f9843a89686ac06713b7851 and before Pike-rc1 does not verify that trust IDs belong to the user when creating alarm action with the scheme trust+http, which allows remote authenticated users with knowledge of trust IDs where Aodh is the trustee to obtain a Keystone token and perform unspecified authenticated actions by adding an alarm action with the scheme trust+http, and providing a trust id where Aodh is the trustee.
Published: 2017-08-18T14:00:00.000Z
Updated: 2024-08-05T18:36:56.113Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.