Lucene search
RedhatCVELIST:CVE-2013-1840HistoryMar 22, 2013 - 9:00 p.m.
CVE-2013-1840
2013-03-2221:00:00
redhat
www.cve.org
The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator’s backend credentials via a request for a cached image.
References
osvdb.org/91304
rhn.redhat.com/errata/RHSA-2013-0707.html
secunia.com/advisories/52565
www.openwall.com/lists/oss-security/2013/03/14/15
www.securityfocus.com/bid/58490
www.ubuntu.com/usn/USN-1764-1
bugs.launchpad.net/glance/+bug/1135541
exchange.xforce.ibmcloud.com/vulnerabilities/82878
review.openstack.org/#/c/24437/
review.openstack.org/#/c/24438/
review.openstack.org/#/c/24439/
Related
ubuntu
ubuntu
OpenStack Glance vulnerability
2013-03-14 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1764-1)
2013-03-15 00:00:00
Ubuntu Update for glance USN-1764-1
2013-03-15 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 08:51:25
prion
prion
Default credentials
2013-03-22 21:55:00
redhat
redhat
(RHSA-2013:0707) Moderate: openstack-glance security and bug fix update
2013-04-04 00:00:00
cve
cve
CVE-2013-1840
2013-03-22 21:55:01
ubuntucve
ubuntucve
CVE-2013-1840
2013-03-14 00:00:00
github
github
OpenStack Glance is vulnerable to Exposure of Sensitive Information
2022-05-17 01:36:25
nessus
nessus
Ubuntu 12.04 LTS / 12.10 : glance vulnerability (USN-1764-1)
2013-03-15 00:00:00
openSUSE Security Update : openstack (openSUSE-2013-237)
2014-06-13 00:00:00
debiancve
debiancve
CVE-2013-1840
2013-03-22 21:55:01
securityvulns
securityvulns
[USN-1764-1] OpenStack Glance vulnerability
2013-03-19 00:00:00
OpenStack security vulnerabilities
2013-03-24 00:00:00
nvd
nvd
CVE-2013-1840
2013-03-22 21:55:01