Default Root Password Vulnerability in Red Hat OpenStack Platform 8.0 and Red Hat Enterprise Linux OpenStack Platform 7.0

Default Root Password Vulnerability in Red Hat OpenStack Platform 8.0 and Red Hat Enterprise Linux OpenStack Platform 7.0

CVE-2016-4474 · LOW Severity

AV:A/AC:L/AU:N/C:P/I:N/A:N

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 (Liberty) director and Red Hat Enterprise Linux OpenStack Platform 7.0 (Kilo) director (aka overcloud-full) use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.