CVEDB API

A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.0%

CVSS Severity

CVSS v3 Score 5.9

References

Products affected by CVE-2022-3100

Openstack » Barbican » Version: N/A

cpe:2.3:a:openstack:barbican:-
Redhat » Openstack » Version: 13

cpe:2.3:a:redhat:openstack:13
Redhat » Openstack » Version: 16.1

cpe:2.3:a:redhat:openstack:16.1
Redhat » Openstack » Version: 16.2

cpe:2.3:a:redhat:openstack:16.2
Redhat » Openstack » Version: 17

cpe:2.3:a:redhat:openstack:17
Redhat » Openstack For Ibm Power » Version: 13

cpe:2.3:a:redhat:openstack_for_ibm_power:13
Redhat » Openstack For Ibm Power » Version: 16.1

cpe:2.3:a:redhat:openstack_for_ibm_power:16.1
Redhat » Openstack For Ibm Power » Version: 16.2

cpe:2.3:a:redhat:openstack_for_ibm_power:16.2
Redhat » Openstack Platform » Version: 13.0

cpe:2.3:a:redhat:openstack_platform:13.0
Redhat » Enterprise Linux Eus » Version: 7.6

cpe:2.3:o:redhat:enterprise_linux_eus:7.6