Lucene search

K
cvelistRedhatCVELIST:CVE-2023-2088
HistoryMay 12, 2023 - 12:00 a.m.

CVE-2023-2088

2023-05-1200:00:00
CWE-440
redhat
www.cve.org
1
openstack
flaw
cinder
nova
remote
volume
detachment
vulnerability
confidentiality

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A remote, authenticated attacker could exploit this vulnerability by detaching one of their volumes from Cinder. The highest impact is to confidentiality.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "OpenStack",
    "versions": [
      {
        "version": "unknown",
        "status": "affected"
      }
    ]
  }
]

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%