Vulnerabilities > Openstack > Barbican

DATE CVE VULNERABILITY TITLE RISK
2023-09-24 CVE-2023-1633 Insufficiently Protected Credentials vulnerability in multiple products
A credentials leak flaw was found in OpenStack Barbican.
local
low complexity
openstack redhat CWE-522
5.5
2023-09-24 CVE-2023-1636 A vulnerability was found in OpenStack Barbican containers.
network
low complexity
openstack redhat
5.0
2023-01-18 CVE-2022-3100 Authentication Bypass by Primary Weakness vulnerability in multiple products
A flaw was found in the openstack-barbican component.
network
high complexity
openstack redhat CWE-305
5.9
2022-09-06 CVE-2022-23451 Incorrect Authorization vulnerability in multiple products
An authorization flaw was found in openstack-barbican.
network
low complexity
openstack redhat CWE-863
8.1
2022-09-01 CVE-2022-23452 Incorrect Authorization vulnerability in multiple products
An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container.
network
low complexity
openstack redhat CWE-863
4.9