An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the www_authenticate_uri parameter (which is visible to all end users) in configuration files. This would give sensitive information which may aid in additional system exploitation. This flaw affects openstack-tripleo-heat-templates versions prior to 11.6.1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2022-03-23T19:46:20
Updated: 2024-08-03T17:16:04.359Z
Reserved: 2021-12-27T00:00:00
Link: CVE-2021-4180
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-03-23T20:15:10.150
Modified: 2024-11-21T06:37:04.907
Link: CVE-2021-4180
Redhat