Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete protected data, causing a denial of service by consuming protected resources.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
barbican 授权问题漏洞
Vulnerability Description
barbican是 OpenStack 密钥管理服务,API 服务器。 barbican存在授权问题漏洞,该漏洞允许远程用户在应用程序中执行未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A