漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete protected data, causing a denial of service by consuming protected resources.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
barbican 授权问题漏洞
Vulnerability Description
barbican是 OpenStack 密钥管理服务,API 服务器。 barbican存在授权问题漏洞,该漏洞允许远程用户在应用程序中执行未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A