PT-2017-7208 · Openstack · Openstack Ironic

Brad Morgan

·

Publicado

2017-06-07

·

Atualizado

2017-06-14

·

CVE-2015-7514

CVSS v3.1

6.5

Média

VetorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions OpenStack Ironic versions 4.2.0 through 4.2.1
Description The issue allows remote authenticated users to obtain sensitive information because the disk is not properly cleaned after use.
Recommendations For versions 4.2.0 through 4.2.1, ensure proper disk cleaning mechanisms are implemented to prevent sensitive information disclosure.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2015-7514

Produtos afetados

Openstack Ironic