Skip to main content

Octavia

2 CVEs product

Monthly

CVE-2019-17134 PyPI CRITICAL PATCH Act Now

Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Octavia Ubuntu Linux
NVD
CVSS 3.1
9.1
EPSS
2.3%
CVE-2019-3895 PyPI HIGH PATCH This Week

An access-control flaw was found in the Octavia service when the cloud platform was deployed using Red Hat OpenStack Platform Director. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Red Hat Octavia Openstack
NVD
CVSS 3.1
8.0
EPSS
1.4%
EPSS 2% CVSS 9.1
CRITICAL PATCH Act Now

Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Octavia Ubuntu Linux
NVD
EPSS 1% CVSS 8.0
HIGH PATCH This Week

An access-control flaw was found in the Octavia service when the cloud platform was deployed using Red Hat OpenStack Platform Director. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Red Hat Octavia +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy