Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-0167HistoryApr 15, 2014 - 2:55 p.m.
CVE-2014-0167
2014-04-1514:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.003 Low
EPSS
Percentile
66.0%
The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules, (3) destroy, and other unspecified methods in compute/api.py when using non-default policies, which allows remote authenticated users to gain privileges via these API requests.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | nova | < 2013.2.3-1 | nova_2013.2.3-1_all.deb |
| Debian | 11 | all | nova | < 2013.2.3-1 | nova_2013.2.3-1_all.deb |
| Debian | 10 | all | nova | < 2013.2.3-1 | nova_2013.2.3-1_all.deb |
| Debian | 999 | all | nova | < 2013.2.3-1 | nova_2013.2.3-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2014-04-15 14:55:00
cvelist
cvelist
CVE-2014-0167
2014-04-15 14:00:00
github
github
nessus
nessus
Fedora 20 : openstack-nova-2013.2.3-2.fc20 (2014-7954)
2014-07-14 00:00:00
Ubuntu 14.04 LTS : OpenStack Nova vulnerabilities (USN-2247-1)
2014-06-18 00:00:00
seebug
seebug
OpenStack Nova RBAC安全绕过漏洞
2014-04-16 00:00:00
osv
osv
ubuntucve
ubuntucve
CVE-2014-0167
2014-04-15 00:00:00
cve
cve
CVE-2014-0167
2014-04-15 14:55:00
veracode
veracode
Privilege Escalation
2019-01-15 08:59:30
redhat
redhat
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.3-2.fc20
2014-07-12 02:22:30
openvas
openvas
Fedora Update for openstack-nova FEDORA-2014-7954
2014-07-15 00:00:00
Ubuntu: Security Advisory (USN-2247-1)
2014-06-23 00:00:00
securityvulns
securityvulns
[USN-2247-1] OpenStack Nova vulnerabilities
2014-06-19 00:00:00
OpenStack multiple security vulnerabilities
2014-06-19 00:00:00
ubuntu
ubuntu
OpenStack Nova vulnerabilities
2014-06-17 00:00:00