Lucene search
HistoryDec 23, 2011 - 10:55 p.m.
CVE-2011-4596
openstack
nova
directory traversal
vulnerability
cve-2011-4596
nvd
6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
5.5 Medium
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.8%
Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest.
Affected configurations
Node
openstacknovaRange2011.3–2011.3.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| openstack:nova | openstack nova | lt | 2011.3.1 |
Related
securityvulns
securityvulns
Nova unauthroized access
2011-12-19 00:00:00
prion
prion
Directory traversal
2011-12-23 22:55:00
cvelist
cvelist
CVE-2011-4596
2011-12-23 22:00:00
nvd
nvd
CVE-2011-4596
2011-12-23 22:55:00
nessus
nessus
Ubuntu 11.10 : nova vulnerability (USN-1305-1)
2011-12-14 00:00:00
Fedora 16 : openstack-nova-2011.3.1-0.4.10818.fc16 (2012-0682)
2012-01-20 00:00:00
Fedora 16 : openstack-nova-2011.3-13.fc16 (2011-17111)
2011-12-23 00:00:00
openvas
openvas
Ubuntu Update for nova USN-1305-1
2012-03-16 00:00:00
Ubuntu: Security Advisory (USN-1305-1)
2012-03-16 00:00:00
Fedora Update for openstack-nova FEDORA-2011-17111
2012-04-02 00:00:00
ubuntu
ubuntu
Nova vulnerability
2011-12-13 00:00:00
github
github
OpenStack Nova Multiple directory traversal vulnerabilities
2022-05-14 01:58:50
ubuntucve
ubuntucve
CVE-2011-4596
2011-12-13 00:00:00
debiancve
debiancve
CVE-2011-4596
2011-12-23 22:55:00
6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
5.5 Medium
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.8%
Related for CVE-2011-4596