Filtered by vendor Openstack Subscriptions
Filtered by product Puppet-tripleo Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2016-9599 2 Openstack, Redhat 2 Puppet-tripleo, Openstack 2024-11-21 N/A
puppet-tripleo before versions 5.5.0, 6.2.0 is vulnerable to an access-control flaw in the IPtables rules management, which allowed the creation of TCP/UDP rules with empty port values. If SSL is enabled, a malicious user could use these open ports to gain access to unauthorized resources.