CVE-2024-4840

An flaw was found in the OpenStack Platform (RHOSP) director, a toolset for installing and managing a complete RHOSP environment. Plaintext passwords may be stored in log files, which can expose sensitive information to anyone with access to the logs.
Configurations

No configuration.

History

25 Nov 2024, 05:15

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2024:9978 -

21 Nov 2024, 09:43

Type Values Removed Values Added
References () https://access.redhat.com/security/cve/CVE-2024-4840 - () https://access.redhat.com/security/cve/CVE-2024-4840 -
References () https://bugzilla.redhat.com/show_bug.cgi?id=2280249 - () https://bugzilla.redhat.com/show_bug.cgi?id=2280249 -
Summary
  • (es) Se encontró una falla en el director OpenStack Platform (RHOSP), un conjunto de herramientas para instalar y administrar un entorno RHOSP completo. Las contraseñas de texto sin formato pueden almacenarse en archivos de registro, lo que puede exponer información confidencial a cualquier persona que tenga acceso a los registros.

14 May 2024, 15:45

Type Values Removed Values Added
New CVE

Information

Published : 2024-05-14 15:45

Updated : 2024-11-25 05:15


NVD link : CVE-2024-4840

Mitre link : CVE-2024-4840

CVE.ORG link : CVE-2024-4840


JSON object : View

Products Affected

No product.

CWE
CWE-312

Cleartext Storage of Sensitive Information