CVE-2017-7214

Source
https://cve.org/CVERecord?id=CVE-2017-7214
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7214.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-7214
Aliases
Downstream
Related
Published
2017-03-21T18:59:00.167Z
Modified
2026-07-08T16:53:28.169037Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in exception_wrapper.py in OpenStack Nova 13.x through 13.1.3, 14.x through 14.0.4, and 15.x through 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account passwords and authorization tokens.

References

Affected packages

Git / github.com/openstack/nova

Affected ranges

Type
GIT
Repo
https://github.com/openstack/nova
Events
Database specific
{
    "cpe": [
        "cpe:2.3:a:openstack:nova:13.0.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:13.1.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:13.1.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:13.1.2:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:13.1.3:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:14.0.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:14.0.1:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:14.0.2:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:14.0.3:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:14.0.4:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:15.0.0:*:*:*:*:*:*:*",
        "cpe:2.3:a:openstack:nova:15.0.1:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "13.0.0"
        },
        {
            "last_affected": "13.0.0"
        },
        {
            "introduced": "13.1.0"
        },
        {
            "last_affected": "13.1.0"
        },
        {
            "introduced": "13.1.1"
        },
        {
            "last_affected": "13.1.1"
        },
        {
            "introduced": "13.1.2"
        },
        {
            "last_affected": "13.1.2"
        },
        {
            "introduced": "13.1.3"
        },
        {
            "last_affected": "13.1.3"
        },
        {
            "introduced": "14.0.0"
        },
        {
            "last_affected": "14.0.0"
        },
        {
            "introduced": "14.0.1"
        },
        {
            "last_affected": "14.0.1"
        },
        {
            "introduced": "14.0.2"
        },
        {
            "last_affected": "14.0.2"
        },
        {
            "introduced": "14.0.3"
        },
        {
            "last_affected": "14.0.3"
        },
        {
            "introduced": "14.0.4"
        },
        {
            "last_affected": "14.0.4"
        },
        {
            "introduced": "15.0.0"
        },
        {
            "last_affected": "15.0.0"
        },
        {
            "introduced": "15.0.1"
        },
        {
            "last_affected": "15.0.1"
        }
    ],
    "source": "CPE_STRING"
}

Affected versions

13.*
13.0.0
13.1.0
13.1.1
13.1.2
13.1.3
14.*
14.0.0
14.0.1
14.0.2
14.0.3
14.0.4
15.*
15.0.0
15.0.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7214.json"