Unknown · Tripleo-Ansible · CVE-2022-3101
**Name of the Vulnerable Software and Affected Versions**
tripleo-ansible (affected versions not specified)
**Description**
A flaw in the default configuration of tripleo-ansible allows a local attacker to potentially disclose important configuration details from an OpenStack deployment through brute force exploration of a directory. The issue arises due to insufficiently restricted permissions on a sensitive file.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.