An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete protected data, causing a denial of service by consuming protected resources.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:8874 advisory.

    Barbican is a REST API designed for the secure storage, provisioning and     management of secrets, including in OpenStack environments.

    Security Fix(es):

    * Barbican allows authenticated users to add/modify/delete arbitrary     metadata on any secret (CVE-2022-23451)

    * Barbican allows anyone with an admin role to add their secrets to a     different project's containers (CVE-2022-23452)

    For more details about the security issue(s), including the impact, a CVSS     score, acknowledgments, and other related information, refer to the CVE     page listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5114 advisory.

    Barbican is a ReST API designed for the secure storage, provisioning and     management of secrets, including in OpenStack environments.

    Security Fix(es):

    * Barbican allows authenticated users to add/modify/delete arbitrary metadata on any secret     (CVE-2022-23451)

    * Barbican allows authenticated role to add secrets to a different project's containers (CVE-2022-23452)

    For more details about the security issue(s), including the impact, a CVSS     score, acknowledgments, and other related information, refer to the CVE     page listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5387-1 advisory.

    Douglas Mendizbal discovered that Barbican incorrectly handled access restrictions. An authenticated     attacker could possibly use this issue to consume protected resources and possibly cause a denial of     service. (CVE-2022-23451, CVE-2022-23452)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
170365	RHEL 8 : Red Hat OpenStack Platform 16.1.9 (openstack-barbican) (RHSA-2022:8874)	Nessus	Red Hat Local Security Checks	high
162487	RHEL 8 : Red Hat OpenStack Platform 16.2 (openstack-barbican) (RHSA-2022:5114)	Nessus	Red Hat Local Security Checks	high
160188	Ubuntu 18.04 LTS / 20.04 LTS : Barbican vulnerabilities (USN-5387-1)	Nessus	Ubuntu Local Security Checks	high

Detections

Analytics

CVE-2022-23451

high

Tenable Plugins

high

high

high