CVE-2017-7214

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2017-7214

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7214.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2017-7214

Aliases

GHSA-f4g4-cj8f-3cr9

Related

Published

2017-03-21T18:59:00Z

Modified

2024-10-12T02:52:39.217526Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in exception_wrapper.py in OpenStack Nova 13.x through 13.1.3, 14.x through 14.0.4, and 15.x through 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization tokens.

References

Affected packages

Debian:11 / nova

Package

Name: nova
Purl: pkg:deb/debian/nova?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:14.0.0-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / nova

Package

Name: nova
Purl: pkg:deb/debian/nova?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:14.0.0-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / nova

Package

Name: nova
Purl: pkg:deb/debian/nova?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:14.0.0-4

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/openstack/nova

Affected ranges

Type: GIT
Repo: https://github.com/openstack/nova
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

2e05c82b807624b8420df4c94d68b75563b230d2

Last affected

59653c6f4623a231c777985b9c5202376ea68aa5

Last affected

63f3d99819137315b9cb8475614b86314733b1d7

Last affected

642caf0c58ed0a0e0c06103d2e3ef001c1ae142f

Last affected

7105f888ee1f52d2a462fc0ece3130dc0d3d49f5

Last affected

7ccf8d2e358623b3536c9f3e2850a75414969134

Last affected

867661d51bdb0cf2a6f326cb18f26bbc1f04eb15

Last affected

c80c8e6dbfb59c117cca53250fdc97f9a171db03

Last affected

c8ec9ebf379c61d73c5671a75dd2a4e4ae1403fb

Last affected

e08cc356b0fb78163657f7a6e99572039fd58543

Last affected

f094cb99e13848e09a9b09e089dbfb56eef4dfb6

Last affected

ff369899749ac3e21ed0174b40e948c78c2dc1fa

Affected versions

0.*

0.9.0

12.*

12.0.0

12.0.0.0b1

12.0.0.0b2

12.0.0.0b3

12.0.0.0rc1

12.0.0.0rc2

12.0.0.0rc3

12.0.0a0

13.*

13.0.0

13.0.0.0b1

13.0.0.0b2

13.0.0.0b3

13.0.0.0rc1

13.0.0.0rc2

13.0.0.0rc3

2010.*

2010.1

2011.*

2011.1

2011.1rc1

2011.2

2011.2gamma1

2011.2rc1

2013.*

2013.1.rc1

2013.2.b3

2013.2.rc1

2014.*

2014.1.b1

2014.1.b2

2014.1.b3

2014.1.rc1

2014.2

2014.2.b1

2014.2.b2

2014.2.b3

2014.2.rc1

2014.2.rc2

2015.*

2015.1.0

2015.1.0b1

2015.1.0b2

2015.1.0b3

2015.1.0rc1

2015.1.0rc2

2015.1.0rc3

Other

diablo-1

diablo-2

essex-1

folsom-1

folsom-2