Lucene search
RedhatCVELIST:CVE-2014-0167HistoryApr 15, 2014 - 2:00 p.m.
CVE-2014-0167
2014-04-1514:00:00
redhat
www.cve.org
The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules, (3) destroy, and other unspecified methods in compute/api.py when using non-default policies, which allows remote authenticated users to gain privileges via these API requests.
Related
github
github
prion
prion
Design/Logic Flaw
2014-04-15 14:55:00
veracode
veracode
Privilege Escalation
2019-01-15 08:59:30
debiancve
debiancve
CVE-2014-0167
2014-04-15 14:55:04
nvd
nvd
CVE-2014-0167
2014-04-15 14:55:04
nessus
nessus
Fedora 20 : openstack-nova-2013.2.3-2.fc20 (2014-7954)
2014-07-14 00:00:00
Ubuntu 14.04 LTS : OpenStack Nova vulnerabilities (USN-2247-1)
2014-06-18 00:00:00
osv
osv
seebug
seebug
OpenStack Nova RBAC安全绕过漏洞
2014-04-16 00:00:00
cve
cve
CVE-2014-0167
2014-04-15 14:55:04
ubuntucve
ubuntucve
CVE-2014-0167
2014-04-15 00:00:00
redhat
redhat
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.3-2.fc20
2014-07-12 02:22:30
openvas
openvas
Fedora Update for openstack-nova FEDORA-2014-7954
2014-07-15 00:00:00
Ubuntu: Security Advisory (USN-2247-1)
2014-06-23 00:00:00
securityvulns
securityvulns
[USN-2247-1] OpenStack Nova vulnerabilities
2014-06-19 00:00:00
OpenStack multiple security vulnerabilities
2014-06-19 00:00:00
ubuntu
ubuntu
OpenStack Nova vulnerabilities
2014-06-17 00:00:00