The Sangfor Security Research Team has identified a critical security vulnerability in the Murano component of OpenStack. This vulnerability allows ordinary users capable of importing and deploying app packages to access sensitive information within OpenStack services. Specifically, through this exploit, unauthorised users can obtain Murano service account credentials, potentially escalating their privileges to an administrator level. Subsequently, unauthorised users can gain complete control over various resources, including user roles, hosts, and networks. The exploit allows access to Murano service's oslo configuration storage, thereby exposing critical Murano service account credentials, granting unauthorised users administrative privileges.
*** Bug 2270037 has been marked as a duplicate of this bug. ***
Lifting Embargo... https://launchpad.net/bugs/2048114 https://opendev.org/openstack/murano/tags https://opendev.org/openstack/yaql/commit/83e28324e1a0ce3970dd854393d2431123a909d3 https://wiki.openstack.org/wiki/OSSN/OSSN-0093
This issue has been addressed in the following products: Red Hat OpenStack Platform 17.1 for RHEL 9 Via RHSA-2024:1931 https://access.redhat.com/errata/RHSA-2024:1931
This issue has been addressed in the following products: Red Hat OpenStack Platform 17.1 for RHEL 8 Via RHSA-2024:1930 https://access.redhat.com/errata/RHSA-2024:1930