Vulnerabilities > Opendev

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-30	CVE-2022-44020	Improper Preservation of Permissions vulnerability in multiple products An issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.2.2. local low complexity opendev fedoraproject CWE-281	5.5
2019-10-08	CVE-2019-17134	Improper Authentication vulnerability in multiple products Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP requests to the Agent on port https/9443, because the cmd/agent.py gunicorn cert_reqs option is True but is supposed to be ssl.CERT_REQUIRED. network low complexity opendev canonical CWE-287 critical	9.1

Vulnerabilities > Opendev {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Opendev"}]}