Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Redhat
Openstack Platform

redhat openstack platform Vulnerabilities: CVEs, CISA KEV & Security Advisories

39 CVEs

1 in CISA KEV

redhat openstack platform Vulnerabilities

CVE security advisories and vulnerability history for openstack platform by redhat.

39

Total CVEs

Published

1

In CISA KEV

Exploited in the wild

4

Public exploits

With known exploit

6.5

Avg CVSS

2017–2024

Last updated November 7, 2024

Overview

redhat openstack platform has 39 published CVE records since 2017, of which 1 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs is 6.5.

This page aggregates every publicly disclosed vulnerability (CVE) affecting redhat openstack platform, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of redhat openstack platform's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High8

Medium11

Low0

20 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

1

One of redhat openstack platform's CVEs is confirmed exploited in the wild.

Public exploits

4

4 of redhat openstack platform's CVEs have a known public exploit available.

Affected versions and CVEs

Browse every redhat openstack platform version named in a CVE, then pick one to see only the CVEs that affect it.

No specific affected versions are recorded for redhat openstack platform; the CVEs below apply to the product without a version pin.

39 CVEs

Sort

Medium vulnerability · 2024-11-07
CVE-2023-1932
Patch
CWE-79
Medium · CVSS 6.1
EPSS 0.8% (74th pct)2024-11-07
Openstack-tripleo-common: rhosp director disables tls verification for registry mirrors
CVE-2024-8007
Patch
CWE-295
High · CVSS 8.1
EPSS 0.3% (55th pct)2024-08-21
Openstack-heat: incomplete fix for cve-2023-1625
CVE-2024-7319
Patch
CWE-200
Medium · CVSS 5.0
EPSS 0.4% (61th pct)2024-08-02
Tripleo-ansible: bind keys are world readable
CVE-2023-6725
Patch
CWE-1220
Medium · CVSS 5.5
EPSS 0.1% (22th pct)2024-03-15
Medium vulnerability · 2023-12-18
CVE-2023-48795
Public exploit
Patch
CWE-354
Medium · CVSS 5.9
EPSS 54.2% (98th pct)2023-12-18
Python-eventlet: patch regression for cve-2021-21419 in some red hat builds
CVE-2023-5625
Patch
CWE-400
Medium · CVSS 5.3
EPSS 0.1% (28th pct)2023-11-01
High vulnerability · 2023-10-10
CVE-2023-44487
CISA KEV
Public exploit
Patch
CWE-400
Added to CISA KEV 2023-10-10
High · CVSS 7.5
EPSS 94.4% (100th pct)2023-10-10
Medium vulnerability · 2023-09-24
CVE-2023-1633CWE-200
Medium · CVSS 6.6
EPSS 0.0% (7th pct)2023-09-24
Incomplete container isolation
CVE-2023-1636CWE-653
Medium · CVSS 6.0
EPSS 0.1% (22th pct)2023-09-24
High vulnerability · 2023-09-24
CVE-2023-1625
Public exploit
Patch
CWE-202
High · CVSS 7.4
EPSS 0.1% (29th pct)2023-09-24
High vulnerability · 2023-09-20
CVE-2022-3596
Patch
Workaround
CWE-402
High · CVSS 7.5
EPSS 0.3% (53th pct)2023-09-20
Medium vulnerability · 2023-09-15
CVE-2022-3261CWE-256
Medium · CVSS 4.4
EPSS 0.0% (14th pct)2023-09-15
High vulnerability · 2023-09-14
CVE-2023-1108
Patch
CWE-835
High · CVSS 7.5
EPSS 0.6% (69th pct)2023-09-14
Openstack-neutron: unrestricted creation of security groups (fix for cve-2022-3277)
CVE-2023-3637
Patch
CWE-400
Medium · CVSS 4.3
EPSS 0.2% (39th pct)2023-07-25
High vulnerability · 2023-07-11
CVE-2023-3354
Patch
CWE-476
High · CVSS 7.5
EPSS 0.1% (31th pct)2023-07-11
High vulnerability · 2023-04-10
CVE-2023-1668
Patch
CWE-670
High · CVSS 8.2
EPSS 0.2% (47th pct)2023-04-10
Medium vulnerability · 2023-03-06
CVE-2022-3277
Public exploit
Patch
CWE-400
Medium · CVSS 6.5
EPSS 0.4% (61th pct)2023-03-06
Medium vulnerability · 2023-01-18
CVE-2022-3100CWE-305
Medium · CVSS 5.9
EPSS 0.2% (43th pct)2023-01-18
Vulnerability · 2022-09-06
CVE-2022-23451
Patch
CWE-863
Unscored
EPSS 0.3% (57th pct)2022-09-06
Vulnerability · 2022-09-01
CVE-2022-23452
Patch
CWE-863
Unscored
EPSS 0.4% (64th pct)2022-09-01
Vulnerability · 2022-09-01
CVE-2022-2447CWE-324
Unscored
EPSS 0.5% (65th pct)2022-09-01
Vulnerability · 2022-08-31
CVE-2022-2132
Patch
CWE-791
Unscored
EPSS 0.5% (68th pct)2022-08-31
Vulnerability · 2022-08-29
CVE-2022-0718
Patch
CWE-522
Unscored
EPSS 1.4% (81th pct)2022-08-29
Vulnerability · 2022-08-26
CVE-2021-3563CWE-863
Unscored
EPSS 0.0% (13th pct)2022-08-26
Vulnerability · 2022-08-25
CVE-2021-3979
Patch
CWE-327
Unscored
EPSS 0.3% (51th pct)2022-08-25
Vulnerability · 2022-08-17
CVE-2020-14394CWE-835
Unscored
EPSS 0.0% (8th pct)2022-08-17
Vulnerability · 2022-05-10
CVE-2022-0866
Patch
CWE-863
Unscored
EPSS 0.3% (51th pct)2022-05-10
Vulnerability · 2022-03-16
CVE-2021-20257
Patch
CWE-835
Unscored
EPSS 0.1% (24th pct)2022-03-16
Vulnerability · 2022-03-02
CVE-2021-3654
Patch
CWE-601
Unscored
EPSS 87.2% (99th pct)2022-03-02
Vulnerability · 2021-06-07
CVE-2020-1690
Patch
CWE-285
Unscored
EPSS 0.0% (10th pct)2021-06-07

Showing 30 of 39

Common weakness types

The CWE weakness categories most often found in redhat openstack platform CVEs. Follow any weakness for its full explanation.

CWE-863Incorrect Authorization4 CVEs
CWE-400Uncontrolled Resource Consumption4 CVEs
CWE-835Loop with Unreachable Exit Condition ('Infinite Loop')4 CVEs
CWE-522Insufficiently Protected Credentials2 CVEs
CWE-200Exposure of Sensitive Information to an Unauthorized Actor2 CVEs
CWE-295Improper Certificate Validation1 CVE
CWE-285Improper Authorization1 CVE
CWE-202Exposure of Sensitive Information Through Data Queries1 CVE

Disclosure activity by year

How many redhat openstack platform CVEs were published each year.

2017

1

2020

5

2021

4

2022

11

2023

14

2024

4

Other redhat products

Browse vulnerabilities for other products by redhat.

enterprise linux2,124 CVEs enterprise linux desktop1,947 CVEs enterprise linux server1,914 CVEs enterprise linux workstation1,850 CVEs enterprise linux server aus1,062 CVEs enterprise linux eus787 CVEs enterprise linux server tus770 CVEs enterprise linux server eus625 CVEs

All redhat vulnerabilities

Frequently asked questions

Common questions about redhat openstack platform vulnerabilities.

How many CVEs does redhat openstack platform have?

redhat openstack platform has 39 published CVE records since 2017.

How many redhat openstack platform CVEs are in CISA KEV?

Yes — 1 of redhat openstack platform's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Are there public exploits for redhat openstack platform vulnerabilities?

Yes — 4 of redhat openstack platform's CVEs have a known public exploit.

What are the most common weakness types in redhat openstack platform CVEs?

redhat openstack platform's CVEs most often map to these CWE weakness types: CWE-863 (Incorrect Authorization), CWE-400 (Uncontrolled Resource Consumption), CWE-835 (Loop with Unreachable Exit Condition ('Infinite Loop')), CWE-522 (Insufficiently Protected Credentials).

What is the average severity of redhat openstack platform CVEs?

The average CVSS base score across redhat openstack platform's scored CVEs is 6.5.

References

All redhat vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track redhat openstack platform vulnerabilities

Monitor new redhat openstack platform vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References