Vulnerabilities > CVE-2022-3100 - Authentication Bypass by Primary Weakness vulnerability in multiple products

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

LOW

Availability impact

NONE

network

high complexity

NVD

Published: 2023-01-18

Updated: 2023-01-26

Summary

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

Part	Description	Count
Application	Openstack Openstack Barbican -	1
Application	Redhat Redhat Openstack 16.1 Redhat Openstack 16.2 Redhat Openstack 13 Redhat Openstack 17 Redhat Openstack FOR IBM Power 16.1 Redhat Openstack FOR IBM Power 13 Redhat Openstack FOR IBM Power 16.2 Redhat Openstack Platform 13.0	8
OS	Redhat Redhat Enterprise Linux EUS 7.6	1