Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to consume protected resources and cause a denial of service.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
barbican 授权问题漏洞
Vulnerability Description
barbican是 OpenStack 密钥管理服务,API 服务器。 barbican存在授权问题漏洞,该漏洞是由于缺少授权检查而存在的。具有管理员角色的远程用户可以将机密添加到不同的项目容器。此漏洞允许网络上的攻击者消耗受保护的资源并导致拒绝服务。该漏洞允许远程用户在应用程序中执行未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A