A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file, leading to information disclosure of important configuration details from the OpenStack deployment.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2023-03-23T00:00:00
Updated: 2024-08-03T01:00:10.848Z
Reserved: 2022-09-02T00:00:00
Link: CVE-2022-3101
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-03-23T21:15:18.880
Modified: 2024-11-21T07:18:49.813
Link: CVE-2022-3101
Redhat