octavia@2.1.1 vulnerabilities
OpenStack Octavia Scalable Load Balancer as a Service
-
latest version
14.0.0
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
a month ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the octavia package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
octavia is an operator-grade reference implementation for Load Balancing as a Service (LBaaS) for OpenStack. Affected versions of this package are vulnerable to Improper Certificate Validation. This allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP requests to the Agent on port https/9443, because the How to fix Improper Certificate Validation? Upgrade |
[0.10.0,2.1.2)
[3.0.0,3.2.0)
[4.0.0,4.1.0)
|