An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the www_authenticate_uri parameter (which is visible to all end users) in configuration files. This would give sensitive information which may aid in additional system exploitation. This flaw affects openstack-tripleo-heat-templates versions prior to 11.6.1.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-03-23T19:46:20

Updated: 2024-08-03T17:16:04.359Z

Reserved: 2021-12-27T00:00:00

Link: CVE-2021-4180

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-23T20:15:10.150

Modified: 2024-11-21T06:37:04.907

Link: CVE-2021-4180

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-12-20T00:00:00Z

Links: CVE-2021-4180 - Bugzilla