Openstack FOR IBM Power

DATE	CVE	VULNERABILITY TITLE	RISK
2023-03-23	CVE-2022-3101	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in tripleo-ansible. local low complexity redhat openstack CWE-732	5.5
2023-03-23	CVE-2022-3146	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A flaw was found in tripleo-ansible. local low complexity redhat openstack CWE-732	5.5
2023-01-18	CVE-2022-3100	Authentication Bypass by Primary Weakness vulnerability in multiple products A flaw was found in the openstack-barbican component. network high complexity openstack redhat CWE-305	5.9
2020-08-07	CVE-2020-9490	HTTP Request Smuggling vulnerability in multiple products Apache HTTP Server versions 2.4.20 to 2.4.43. network low complexity apache oracle opensuse debian fedoraproject canonical redhat CWE-444	7.5
2019-10-16	CVE-2019-11281	Cross-site Scripting vulnerability in multiple products Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user input. network low complexity pivotal-software debian fedoraproject redhat CWE-79	4.8