CVE-2014-9593
published 2015-01-15CVE-2014-9593: Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to obtain private keys via a listSslCerts API call.
medium5CVSS 3.1
AVNACLAuNCPINAN
Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to obtain private keys via a listSslCerts API call.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | cloudstack | <= 4.3.1 | — |
| apache | cloudstack | — | — |
| apache | cloudstack | — | — |