Insecure Default Credentials in TripleO Heat Templates

Insecure Default Credentials in TripleO Heat Templates

CVE-2015-5329 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The TripleO Heat templates (tripleo-heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 7.0, do not properly use the configured RabbitMQ credentials, which makes it easier for remote attackers to obtain access to services in deployed overclouds by leveraging knowledge of the default credentials.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.