{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T10:51:16.897","vulnerabilities":[{"cve":{"id":"CVE-2022-3100","sourceIdentifier":"secalert@redhat.com","published":"2023-01-18T17:15:10.173","lastModified":"2025-04-03T20:15:17.363","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API."},{"lang":"es","value":"Se encontró una falla en el componente openstack-barbican. Este problema permite omitir la política de acceso a través de una cadena de consulta al acceder a la API."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":4.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.6,"impactScore":4.2}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-305"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openstack:barbican:-:*:*:*:*:*:*:*","matchCriteriaId":"596EFC6C-4D91-4EDF-9EC6-1C58EB485C5E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:13:*:*:*:els:*:*:*","matchCriteriaId":"BC52495A-0275-4FC5-869B-7137E7FE115E"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:16.1:*:*:*:*:*:*:*","matchCriteriaId":"C9D3F4FF-AD3D-4D17-93E8-84CAFCED2F59"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:16.2:-:*:*:*:*:*:*","matchCriteriaId":"FFE398FE-EE7C-4B64-ABB6-24697E047C85"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack:17:*:*:*:*:*:*:*","matchCriteriaId":"BC12AF01-CCDD-4AB6-8F44-32058A63BAFB"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_for_ibm_power:13:*:*:*:els:*:*:*","matchCriteriaId":"1669C672-84CB-46D7-802A-4489749C8821"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_for_ibm_power:16.1:*:*:*:*:*:*:*","matchCriteriaId":"D272E454-64F0-4BD2-9EE8-B2A48023758A"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_for_ibm_power:16.2:*:*:*:*:*:*:*","matchCriteriaId":"8DD273B9-4536-42E5-9F90-52408D263B22"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_platform:13.0:*:*:*:*:*:*:*","matchCriteriaId":"C52600BF-9E87-4CD2-91F3-685AFE478C1E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*","matchCriteriaId":"5BF3C7A5-9117-42C7-BEA1-4AA378A582EF"}]}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2022-3100","source":"secalert@redhat.com","tags":["Third Party Advisory"]},{"url":"https://access.redhat.com/security/cve/CVE-2022-3100","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}