Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Initialization of a Resource with an Insecure Default in YAOOK
Vulnerability Description
Incorrect configuration of replication security in the MariaDB component of the infra-operator in YAOOK Operator allows an on-path attacker to read database contents, potentially including credentials
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
不安全的默认资源初始化
Vulnerability Title
YAOOK Operator 安全漏洞
Vulnerability Description
YAOOK Operator是德国YAOOK公司的一个部署和管理OpenStack云服务的自动化控制组件。 YAOOK Operator存在安全漏洞,该漏洞源于复制安全配置不当,可能导致数据库内容泄露。
CVSS Information
N/A
Vulnerability Type
N/A