Barbican is a REST API designed for the secure storage, provisioning and
management of secrets, including in OpenStack environments.

Security Fix(es):

* Barbican allows authenticated users to add/modify/delete arbitrary
metadata on any secret (CVE-2022-23451)

* Barbican allows anyone with an admin role to add their secrets to a
different project’s containers (CVE-2022-23452)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.Read More