CVE-2014-4615

The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry (Ceilometer) 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo allows remote authenticated users to obtain X_AUTH_TOKEN values by reading the message queue (v2/meters/http.request).
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:openstack:4.0:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:openstack:neutron:2014.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:neutron:2014.1.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.3:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.5:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.4:*:*:*:*:*:*:*
cpe:2.3:a:openstack:telemetry_\(ceilometer\):2014.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:telemetry_\(ceilometer\):2013.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.7:*:*:*:*:*:*:*
cpe:2.3:a:openstack:oslo:-:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.4:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.8:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.9:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:*:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.6:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:openstack:pycadf:0.1.2:*:*:*:*:*:*:*
cpe:2.3:a:openstack:neutron:juno1:*:*:*:*:*:*:*

Information

Published : 2014-08-19 11:55

Updated : 2017-01-06 19:00


NVD link : CVE-2014-4615

Mitre link : CVE-2014-4615


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

openstack

  • neutron
  • telemetry_\(ceilometer\)
  • pycadf
  • oslo

redhat

  • openstack

canonical

  • ubuntu_linux