GHSA-xcp8-hh74-f6mc

• CVE-2017-2592
• PYSEC-2018-104

• 5.5 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
• 7.1 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator

{
    "nvd_published_at": "2018-05-08T17:29:00Z",
    "cwe_ids": [
        "CWE-532"
    ],
    "severity": "HIGH",
    "github_reviewed": true,
    "github_reviewed_at": "2020-06-16T22:02:55Z"
}

• https://nvd.nist.gov/vuln/detail/CVE-2017-2592
• https://access.redhat.com/errata/RHSA-2017:0300
• https://access.redhat.com/errata/RHSA-2017:0435
• https://bugs.launchpad.net/keystonemiddleware/+bug/1628031
• https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2592
• https://github.com/advisories/GHSA-xcp8-hh74-f6mc
• https://github.com/openstack/oslo.middleware
• https://github.com/pypa/advisory-database/tree/main/vulns/oslo-middleware/PYSEC-2018-104.yaml
• https://review.openstack.org/#/c/425730
• https://review.openstack.org/#/c/425732
• https://review.openstack.org/#/c/425734
• https://usn.ubuntu.com/3666-1
• http://lists.openstack.org/pipermail/openstack-announce/2017-January/002002.html
• http://rhn.redhat.com/errata/RHSA-2017-0300.html
• http://rhn.redhat.com/errata/RHSA-2017-0435.html