Lucene search
RedhatCVELIST:CVE-2011-4076HistoryNov 26, 2019 - 3:53 a.m.
CVE-2011-4076
2019-11-2603:53:58
redhat
www.cve.org
2
OpenStack Nova before 2012.1 allows someone with access to an EC2_ACCESS_KEY (equivalent to a username) to obtain the EC2_SECRET_KEY (equivalent to a password). Exposing the EC2_ACCESS_KEY via http or tools that allow man-in-the-middle over https could allow an attacker to easily obtain the EC2_SECRET_KEY. An attacker could also presumably brute force values for EC2_ACCESS_KEY.
CNA Affected
[
{
"product": "nova",
"vendor": "nova",
"versions": [
{
"status": "affected",
"version": "2014.1.3-11"
}
]
}
]Related
openvas
openvas
Fedora Update for openstack-nova FEDORA-2011-15449
2012-03-19 00:00:00
Fedora Update for openstack-nova FEDORA-2011-15449
2012-03-19 00:00:00
Fedora Update for openstack-nova FEDORA-2011-17111
2012-04-02 00:00:00
ubuntucve
ubuntucve
CVE-2011-4076
2011-10-25 00:00:00
nvd
nvd
CVE-2011-4076
2019-11-26 04:15:11
nessus
nessus
Fedora 16 : openstack-nova-2011.3-6.fc16 (2011-15449)
2011-11-07 00:00:00
redhatcve
redhatcve
CVE-2011-4076
2019-10-04 23:19:15
fedora
fedora
[SECURITY] Fedora 16 Update: openstack-nova-2011.3-6.fc16
2011-11-05 01:24:15
prion
prion
Code injection
2019-11-26 04:15:00
debiancve
debiancve
CVE-2011-4076
2019-11-26 04:15:11
github
github
OpenStack Nova Exposure of Sensitive Information to an Unauthorized Actor
2022-04-22 00:24:18
cve
cve
CVE-2011-4076
2019-11-26 04:15:11