CVE-2023-1636
6
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
Summary
A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one configuration. Barbican containers share the same CGROUP, USER, and NET namespace with the host system and other OpenStack services. If any service is compromised, it could gain access to the data transmitted to and from Barbican.
Affected Software
| Vendor | Product | Version Range | Status |
|---|
Weaknesses
- CWE-653: Improper Isolation or Compartmentalization
ADP Enrichment
CVE Program Container
Additional References
- https://access.redhat.com/security/cve/CVE-2023-1636
- https://bugzilla.redhat.com/show_bug.cgi?id=2181765
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://access.redhat.com/security/cve/CVE-2023-1636
- https://bugzilla.redhat.com/show_bug.cgi?id=2181765
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.