Openstack · Openstack · CVE-2023-2088
**Name of the Vulnerable Software and Affected Versions**
OpenStack (affected versions not specified)
**Description**
A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A remote, authenticated attacker could exploit this issue by detaching one of their volumes from Cinder. The highest impact is to confidentiality. The vulnerability is related to a lack of protection for service data, which could allow a remote attacker to disclose protected information.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this issue.