{"id":"CVE-2016-6829","details":"The trove service user in (1) Openstack deployment (aka crowbar-openstack) and (2) Trove Barclamp (aka barclamp-trove and crowbar-barclamp-trove) in the Crowbar Framework has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors.","modified":"2026-03-15T13:56:30.335627Z","published":"2016-12-09T20:59:04.327Z","related":["SUSE-SU-2016:3056-1"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/08/16/1"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2016/08/18/9"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/92476"},{"type":"FIX","url":"https://github.com/crowbar/barclamp-trove/commit/932298f250365fed6963700870e52db3a7a32daa"},{"type":"FIX","url":"https://github.com/crowbar/crowbar-openstack/commit/208230bdfbcb19d062149d083b1a66b429516a69"},{"type":"FIX","url":"https://www.suse.com/security/cve//CVE-2016-6829.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/crowbar/barclamp-trove","events":[{"introduced":"0"},{"fixed":"932298f250365fed6963700870e52db3a7a32daa"}]},{"type":"GIT","repo":"https://github.com/crowbar/crowbar-openstack","events":[{"introduced":"0"},{"fixed":"208230bdfbcb19d062149d083b1a66b429516a69"}]},{"type":"GIT","repo":"https://github.com/crowbar/barclamp-trove","events":[{"introduced":"0"},{"fixed":"932298f250365fed6963700870e52db3a7a32daa"}]},{"type":"GIT","repo":"https://github.com/crowbar/crowbar-openstack","events":[{"introduced":"0"},{"fixed":"208230bdfbcb19d062149d083b1a66b429516a69"}]}],"versions":["release/suse-cloud/4","release/suse-cloud/5","release/suse-openstack-cloud/6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-6829.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}