Published: 29/08/2022 Updated: 21/07/2023

CVSS v3 Base Score: 4.9 | Impact Score: 3.6 | Exploitability Score: 1.2

VMScore: 0

A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect masking in debug logs, causing any part of the password after the double quote to be plaintext.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openstack oslo.utils
openstack oslo.utils 4.12.0
redhat openshift container platform 4.0
redhat openstack platform 16.1
debian debian linux 10.0
debian debian linux 11.0

Synopsis Moderate: Red Hat OpenStack Platform 1619 (python-oslo-utils) security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for python-oslo-utils is now available for Red Hat OpenStackPlatform 1619 ...

Synopsis Moderate: Red Hat OpenStack Platform 162 (python-oslo-utils) security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for python-oslo-utils is now available for Red Hat OpenStackPlatform 162 (Tr ...

CWE-532 https://security-tracker.debian.org/tracker/CVE-2022-0718 https://bugzilla.redhat.com/show_bug.cgi?id=2056850 https://access.redhat.com/security/cve/CVE-2022-0718 https://bugs.launchpad.net/oslo.utils/+bug/1949623 https://opendev.org/openstack/oslo.utils/commit/6e17ae1f7959c64dfd20a5f67edf422e702426aa https://lists.debian.org/debian-lts-announce/2022/09/msg00015.html https://access.redhat.com/errata/RHSA-2022:8873 https://nvd.nist.gov

CVE-2022-0718

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect