OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances' SSL certificates, they allow full API access, though and can be used to perform any API operation the user is authorized to perform.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-21T13:17:11

Updated: 2024-08-06T01:57:47.553Z

Reserved: 2016-09-09T00:00:00

Link: CVE-2016-7404

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-21T14:15:10.430

Modified: 2024-11-21T02:57:55.860

Link: CVE-2016-7404

cve-icon Redhat

No data.