Barbican is a ReST API designed for the secure storage, provisioning and
management of secrets, including in OpenStack environments.

Security Fix(es):

* Barbican allows authenticated users to add/modify/delete arbitrary metadata on any secret (CVE-2022-23451)

* Barbican allows authenticated role to add secrets to a different project’s containers (CVE-2022-23452)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.Read More