Lucene search
HistorySep 16, 2013 - 7:14 p.m.
CVE-2013-4183
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive information via unspecified vectors.
Affected configurations
Node
openstackcinderMatch2013.1.1
ORopenstackcinderMatch2013.1.2
Related
prion
prion
Design/Logic Flaw
2013-09-16 19:14:00
cve
cve
CVE-2013-4183
2013-09-16 19:14:38
ubuntucve
ubuntucve
CVE-2013-4183
2013-08-07 00:00:00
debiancve
debiancve
CVE-2013-4183
2013-09-16 19:14:38
cvelist
cvelist
CVE-2013-4183
2013-09-16 19:00:00
veracode
veracode
Information Disclosure
2019-01-15 08:58:19
Denial Of Service (DoS)
2019-05-02 04:48:39
seebug
seebug
OpenStack Cinder 俥ćŻćłćźćźć´(CVE-2013-4183)
2013-08-27 00:00:00
github
github
OpenStack Cinder LVMVolumeDriver does not zero deleted snapshots
2022-05-17 04:58:58
openvas
openvas
Ubuntu: Security Advisory (USN-2005-1)
2013-10-29 00:00:00
Ubuntu Update for cinder USN-2005-1
2013-10-29 00:00:00
ubuntu
ubuntu
Cinder vulnerabilities
2013-10-23 00:00:00
nessus
nessus
Ubuntu 13.04 : cinder vulnerabilities (USN-2005-1)
2013-10-24 00:00:00
RHEL 6 : openstack-cinder (RHSA-2013:1198)
2024-04-21 00:00:00
securityvulns
securityvulns
[USN-2005-1] Cinder vulnerabilities
2013-10-28 00:00:00
OpenStack multiple security vulnerabilities
2013-12-23 00:00:00
redhat
redhat
(RHSA-2013:1198) Moderate: openstack-cinder security update
2013-09-03 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2013-4183