The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive information from private containers via unspecified vectors.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2016-0034 | The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive information from private containers via unspecified vectors. |
![]() |
GHSA-8936-44gw-7664 | TripleO Heat templates might allow remote attackers to obtain sensitive information from private containers |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T06:41:09.514Z
Reserved: 2015-07-01T00:00:00
Link: CVE-2015-5271

No data.

Status : Deferred
Published: 2016-04-15T17:59:00.193
Modified: 2025-04-12T10:46:40.837
Link: CVE-2015-5271


No data.