CVE-2022-3261
First published: Wed Sep 21 2022(Updated: )
A flaw was found in OpenStack. Multiple components show plain-text passwords in /var/log/messages during the OpenStack overcloud update run, leading to a disclosure of sensitive information problem.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Redhat Openstack Platform | =16.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this flaw in OpenStack?
The vulnerability ID of this flaw in OpenStack is CVE-2022-3261.
What is the severity level of CVE-2022-3261?
The severity level of CVE-2022-3261 is high with a severity value of 7.5.
Which components of OpenStack are affected by CVE-2022-3261?
Multiple components of OpenStack are affected by CVE-2022-3261.
What is the impact of this vulnerability?
The vulnerability allows plain-text passwords to be disclosed in /var/log/messages during the OpenStack overcloud update run, leading to a disclosure of sensitive information problem.
Are there any fixes or patches available for CVE-2022-3261?
Yes, fixes and patches are available for CVE-2022-3261. Please refer to the provided references for more information.
- collector/redhat-cve
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- vendor/redhat
- canonical/redhat openstack platform
- version/redhat openstack platform/16.2