CVE-2014-7230
EPSS 0.12%發布日:2014/10/8修改日:2026/4/28
也稱為:DEBIAN-CVE-2014-7230
描述
The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log.
受影響套件(3)
- Debian/cinderfrom 0, < 2014.1.3-4
- Debian/novafrom 0, < 2014.1.3-5
- Debian/openstack-trovefrom 0, < 2014.1.3-1