VDB
CVE-2022-23451
CVE-2022-23451
PUBLISHED
Es existiert eine Schwachstelle in Red Hat OpenStack. Der Fehler besteht aufgrund einer falschen Autorisierung in openstack-barbican. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um Metadaten eines beliebigen Geheimnisses hinzuzufügen, zu ändern oder zu löschen, unabhängig vom Eigentümer.
EPSS 0.34% · 57.0th percentile
Risk Scores
EPSS Score
0.34%
57.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| Debian | Debian Linux |
Timeline
- Jun 22, 2022 CVE Published
- Sep 7, 2022 EPSS Score
- Oct 22, 2022 EPSS Score
- Dec 6, 2022 EPSS Score
- Dec 7, 2022 CVE Updated
- Jan 21, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 21, 2023 EPSS Score
- Jun 5, 2023 EPSS Score
- Jul 20, 2023 EPSS Score
- Sep 4, 2023 EPSS Score
- Oct 19, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0439.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0439 advisory
- https://access.redhat.com/errata/RHSA-2022:8874 advisory
- https://access.redhat.com/errata/RHSA-2022:8869 advisory
- https://access.redhat.com/errata/RHSA-2022:5114 advisory
- https://access.redhat.com/errata/RHSA-2022:5115 advisory
- https://access.redhat.com/errata/RHSA-2022:5116 advisory
- https://access.redhat.com/errata/RHSA-2022:5498 advisory
- https://access.redhat.com/errata/RHSA-2022:5602 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-September/012331.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2022-September/012332.html advisory
- https://lists.debian.org/debian-security-announce/2022/msg00223.html advisory