A vulnerability was found in python-glance-store. The issue occurs when the package logs the access_key for the glance-store when the DEBUG log level is enabled.

Affected Packages

PyPI glance-store

Affected versions: 0 (last affected: 4.6.1)

Related CVEs

CVE-2024-1141

Key Information

GHSA ID

GHSA-wgpq-p2hm-56v9

Published

February 1, 2024 3:30 PM

Last Modified

May 23, 2024 1:55 PM

CVSS Score

5.0 /10

Primary Ecosystem

PyPI

Primary Package

glance-store

GitHub Reviewed

✓ Yes

Dataset

Last updated: June 18, 2025 6:25 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.