Vulnerabilities > Openstack > Pycadf > 0.1.8

DATE CVE VULNERABILITY TITLE RISK
2014-08-19 CVE-2014-4615 Information Exposure vulnerability in multiple products
The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry (Ceilometer) 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo allows remote authenticated users to obtain X_AUTH_TOKEN values by reading the message queue (v2/meters/http.request).
network
low complexity
redhat canonical openstack CWE-200
5.0
5.0