CVE-2016-7404

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2016-7404

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7404.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2016-7404

Aliases

GHSA-793v-r35j-9rp9

Downstream

DEBIAN-CVE-2016-7404

SUSE-SU-2017:1233-1

UBUNTU-CVE-2016-7404

Related

SUSE-SU-2017:1233-1

Published

2019-06-21T14:15:10.430Z

Modified

2026-03-14T09:20:33.044298Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances' SSL certificates, they allow full API access, though and can be used to perform any API operation the user is authorized to perform.

References

Affected packages

Git /

Affected ranges

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-7404.json"