Back to search
CVE-2019-17134
Published: Oct 8, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP requests to the Agent on port https/9443, because the cmd/agent.py gunicorn cert_reqs option is True but is supposed to be ssl.CERT_REQUIRED.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://storyboard.openstack.org/#%21/story/2006660
x_refsource_MISC
https://review.opendev.org/686547
x_refsource_MISC
https://review.opendev.org/686546
x_refsource_MISC
https://review.opendev.org/686545
x_refsource_MISC
https://review.opendev.org/686544
x_refsource_MISC
https://review.opendev.org/686543
x_refsource_MISC
https://review.opendev.org/686541
x_refsource_MISC
https://security.openstack.org/ossa/OSSA-2019-005.html
x_refsource_CONFIRM
USN-4153-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:3743
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3788
vendor-advisory
x_refsource_REDHAT
RHSA-2020:0721
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now