Skip to main content

Trove

3 CVEs product

Monthly

CVE-2015-3156 PyPI MEDIUM PATCH This Month

The _write_config function in trove/guestagent/datastore/experimental/mongodb/service.py, reset_configuration function in trove/guestagent/datastore/experimental/postgresql/service/config.py,. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Redis PostgreSQL Information Disclosure Trove
NVD GitHub
CVSS 3.0
5.5
EPSS
0.1%
CVE-2014-7231 PyPI LOW POC PATCH Monitor

The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands,. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Cinder Nova Trove Openstack
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2014-7230 LOW Monitor

The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cinder Nova Trove Openstack +1
NVD
CVSS 2.0
2.1
EPSS
0.1%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

The _write_config function in trove/guestagent/datastore/experimental/mongodb/service.py, reset_configuration function in trove/guestagent/datastore/experimental/postgresql/service/config.py,. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Redis PostgreSQL Information Disclosure +1
NVD GitHub
EPSS 0% CVSS 2.1
LOW POC PATCH Monitor

The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands,. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Cinder Nova +2
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Cinder Nova +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy