Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the www_authenticate_uri parameter (which is visible to all end users) in configuration files. This would give sensitive information which may aid in additional system exploitation. This flaw affects openstack-tripleo-heat-templates versions prior to 11.6.1.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
openstack-tripleo-heat-templates 信息泄露漏洞
Vulnerability Description
openstack-tripleo-heat-templates是一组模板和工具,用于构建 Heat 模板以进行 OpenStack 部署。 openstack-tripleo-heat-templates 存在安全漏洞,该漏洞源于攻击者可以通过检查配置文件中的 www_authenticate_uri 参数(对所有最终用户可见)来利用这一点。这将提供敏感信息,可能有助于额外的系统利用。此漏洞影响 11.6.1 之前的 openstack-tripleo-heat-templates 版本。
CVSS Information
N/A
Vulnerability Type
N/A