The default configuration in the standalone controller quickstack manifest in openstack-foreman-installer, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, disables authentication for Qpid, which allows remote malicious users to gain access by connecting to Qpid.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat openstack 4.0 |