Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry (Ceilometer) 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo allows remote authenticated users to obtain X_AUTH_TOKEN values by reading the message queue (v2/meters/http.request).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款OpenStack产品 信息泄露漏洞
Vulnerability Description
OpenStack是美国国家航空航天局(National Aeronautics and Space Administration)和美国Rackspace公司合作研发的一个云平台管理项目。PyCADF、Telemetry、Neutron和Oslo都是其中的项目;PyCADF是其中的一个CADF(云计算审计数据联盟工作组,用于开发DMTF审计事件数据模型)的Python实现;Telemetry(Ceilometer)是其中的一个能把OpenStack内所有的事件都收集起来并提供给监控、计费、面板等项目使用
CVSS Information
N/A
Vulnerability Type
N/A