cvedb.io
CVE-2015-5303
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2016-04-11T21:59:03.100 · Last modified 2026-06-17T00:28:52.523

Summary

The TripleO Heat templates (tripleo-heat-templates), when deployed via the commandline interface, allow remote attackers to spoof OpenStack Networking metadata requests by leveraging knowledge of the default value of the NeutronMetadataProxySharedSecret parameter.

Affected products

openstack — tripleo_heat_templates

Does this affect you?

Add your gear to cvedb and we'll alert you only when openstack ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.