A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.
2023-01-18T17:15:10.173
2025-04-03T20:15:17.363
Modified
CVSSv3.1: 5.9 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | openstack | barbican | - | Yes |
| Application | redhat | openstack | 13 | Yes |
| Application | redhat | openstack | 16.1 | Yes |
| Application | redhat | openstack | 16.2 | Yes |
| Application | redhat | openstack | 17 | Yes |
| Application | redhat | openstack_for_ibm_power | 13 | Yes |
| Application | redhat | openstack_for_ibm_power | 16.1 | Yes |
| Application | redhat | openstack_for_ibm_power | 16.2 | Yes |
| Application | redhat | openstack_platform | 13.0 | Yes |
| Operating System | redhat | enterprise_linux_eus | 7.6 | No |