Headline

CVE-2022-44020

An issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.2.2. Changing the boot device configuration with these packages removes password protection from the managed libvirt XML domain. NOTE: this only affects an “unsupported, production-like configuration.”

2 years ago

CVE

Open in Source

Related news

Red Hat Security Advisory 2022-8896-01

Red Hat Security Advisory 2022-8896-01 - A virtual BMC for controlling virtual machines using IPMI commands.

1 year ago

Packet Storm

Open in Source

#vulnerability #mac #red_hat #js #c++

RHSA-2022:8896: Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 (python-virtualbmc) security update

An update for python-virtualbmc is now available for Red Hat OpenStack Platform 13 (Queens). Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original. Related CVEs: * CVE-2022-44020: Sushy-Tools & VirtualBMC: removes password protection from the managed libvirt XML domain

1 year ago

Red Hat Security Data

Open in Source