Homepage
About Snyk

magnum@6.3.0 vulnerabilities

Container Management project for OpenStack

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the magnum package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Time-of-check Time-of-use (TOCTOU) Race Condition

magnum is a Container Management project for OpenStack

Affected versions of this package are vulnerable to Time-of-check Time-of-use (TOCTOU) Race Condition due to improper user input sanitization in the create_client_files function of thecert_manager.py component. Exploiting this vulnerability can lead to RCE.

How to fix Time-of-check Time-of-use (TOCTOU) Race Condition?

Upgrade magnum to version 14.1.2, 15.0.2, 16.0.2, 17.0.2 or higher.

[,14.1.2) [15.0.0.0rc1,15.0.2) [16.0.0.0rc1,16.0.2) [17.0.0.0rc1,17.0.2)
Go back to all versions of this package