CVE-2024-29156

Published: 2024-03-18T07:15Z

Last Modified: 2025-03-25T20:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt