GCVE - cpe:2.3:a:openstack:puppet-swift:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:openstack:puppet-swift:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Openstack (`7b0cf974-b2b5-592e-bdf4-6953805ef02a`)
Product	Puppet Swift (`4c0dd6ed-a2f8-5876-9d8a-bc06bfb0f0ea`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/openstack/puppet-swift`	purl2cpe	2026-06-01 10:17:03.421691

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-9590`	vulnerable	2026-06-03 14:36:17.020772	Details available MEDIUM (6.5) puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates the proxy-server.conf file with world-readable permissions. Published: 2018-04-26T17:00:00.000Z Updated: 2024-08-06T02:59:02.247Z Open on db.gcve.eu Reference links http://rhn.redhat.com/errata/RHSA-2017-0359.html http://www.securityfocus.com/bid/95448 http://rhn.redhat.com/errata/RHSA-2017-0361.html http://rhn.redhat.com/errata/RHSA-2017-0200.html https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9590	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.