CVE-2022-0718

Summary

A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect masking in debug logs, causing any part of the password after the double quote to be plaintext.

Affected Software

VendorProductVersion RangeStatus
n/aopenstack/python-oslo.utilsAffects all versions, Fixed in 4.10.1, 4.12.1.affected

Weaknesses

  • CWE-522: CWE-522 - Insufficiently Protected Credentials

ADP Enrichment

CVE Program Container

Additional References

References