CVE-2024-4840

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published May 14, 2024

CWE ID 312

Summary

CVE-2024-4840 is a newly identified vulnerability affecting the OpenStack Platform (RHOSP) director. This toolset is used for installing and managing a complete RHOSP environment. The issue lies in the director's logging functionality, which stores plaintext passwords in log files. As a result, anyone with access to these logs can potentially gain sensitive information. This vulnerability highlights the importance of proper password management and secure log handling in maintaining the security of OpenStack environments.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v6W4YA
https://www.cve.org/CVERecord?id=CVE-2024-4840
https://nvd.nist.gov/vuln/detail/CVE-2024-4840

Back to Vulnerability Database

CVE-2024-4840

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations