CVE-2014-9493

2015-01-07T19:59:00
ID CVE-2014-9493
Type cve
Reporter cve@mitre.org
Modified 2019-02-01T18:09:00

Description

The V2 API in OpenStack Image Registry and Delivery Service (Glance) before 2014.2.2 and 2014.1.4 allows remote authenticated users to read or delete arbitrary files via a full pathname in a file: URL in the image location property.