redhat-access-plugin-openstack: information disclosure
| Package(s): | redhat-access-plugin-openstack | CVE #(s): | CVE-2015-0271 | ||||||||||||
| Created: | March 6, 2015 | Updated: | March 11, 2015 | ||||||||||||
| Description: | From the Red Hat advisory: It was found that the local log-viewing function of the redhat-access-plugin for OpenStack Dashboard (horizon) did not sanitize user input. An authenticated user could use this flaw to read an arbitrary file with the permissions of the web server. | ||||||||||||||
| Alerts: |
| ||||||||||||||