PT-2017-7208 · Openstack · Openstack Ironic
Brad Morgan
·
Published
2017-06-07
·
Updated
2017-06-14
·
CVE-2015-7514
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
OpenStack Ironic versions 4.2.0 through 4.2.1
Description
The issue allows remote authenticated users to obtain sensitive information because the disk is not properly cleaned after use.
Recommendations
For versions 4.2.0 through 4.2.1, ensure proper disk cleaning mechanisms are implemented to prevent sensitive information disclosure.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openstack Ironic