Showing 1 - 4 of 4

CVE-2021-3654

Status Candidate

Overview

A vulnerability was found in openstack-nova's console proxy, noVNC. By crafting a malicious URL, noVNC could be made to redirect to any desired URL.

Gentoo Linux Security Advisory 202305-02: Posted May 3, 2023; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202305-2 - Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.; tags | advisory, arbitrary, vulnerability, code execution, python; systems | linux, gentoo; advisories | CVE-2015-20107, CVE-2021-28363, CVE-2021-28861, CVE-2021-29921, CVE-2021-3654, CVE-2022-0391, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061; SHA-256 | 641b7206ae708be2456ced27dc11f8f77c8d01d6eb97ee4f516c3e6799b4e0ad; Download | Favorite | View

Ubuntu Security Notice USN-5866-1: Posted Feb 13, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5866-1 - It was discovered that Nova did not properly manage data logged into the log file. An attacker with read access to the service's logs could exploit this issue and may obtain sensitive information. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 LTS. It was discovered that Nova did not properly handle attaching and reattaching the encrypted volume. An attacker could possibly use this issue to perform a denial of service attack. This issue only affected Ubuntu 16.04 ESM.; tags | advisory, denial of service; systems | linux, ubuntu; advisories | CVE-2015-9543, CVE-2017-18191, CVE-2020-17376, CVE-2021-3654, CVE-2022-37394; SHA-256 | 33d65f15c5f1a8736cfde476dfd82ec6d391c911bd7a4660dc3f8c8b00f3416b; Download | Favorite | View

Red Hat Security Advisory 2022-0983-01: Posted Mar 25, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-0983-01 - OpenStack Compute is open source software designed to provision and manage large networks of virtual machines, creating a redundant and scalable cloud computing platform. It gives you the software, control panels, and APIs required to orchestrate a cloud, including running instances, managing networks, and controlling access through users and projects.OpenStack Compute strives to be both hardware and hypervisor agnostic, currently supporting a variety of standard hardware configurations and seven major hypervisors. Issues addressed include an open redirection vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-3654; SHA-256 | b87595db4664b26dadaff42c2689210a86aa6d4a9c4125798a5220f97f1a65a9; Download | Favorite | View

Red Hat Security Advisory 2022-0999-01: Posted Mar 24, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-0999-01 - OpenStack Compute is open source software designed to provision and manage large networks of virtual machines,creating a redundant and scalable cloud computing platform. It gives you the software, control panels, and APIs required to orchestrate a cloud, including running instances, managing networks, and controlling access through users and projects.OpenStack Compute strives to be both hardware and hypervisor agnostic, currently supporting a variety of standard hardware configurations and seven major hypervisors. Issues addressed include an open redirection vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-3654; SHA-256 | 28779d3e50dbd7213d9f1459f5541bdd16267995b0e63c216606c8a9cbe17def; Download | Favorite | View

Page 1 of 1 Back 1 Next