Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

SUSE CVE
SUSE CVEadded 2023/02/15 5:34 a.m.1 views

SUSE CVE-2013-6384

1 impldb2.py and 2 implmongodb.py in OpenStack Ceilometer 2013.2 and earlier, when the logging level is set to INFO, logs the connection string from ceilometer.conf, which allows local users to obtain sensitive information the DB2 or MongoDB password by reading the log file...

1.9CVSS6.2AI score0.00057EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2023/02/15 5:29 a.m.1 views

SUSE CVE-2014-2573

The VMWare driver in OpenStack Compute Nova 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by requesting the VM be put into rescue and then deleting the imag...

2.3CVSS6.7AI score0.00106EPSS
Exploits1References4
OSV
OSVadded 2022/05/14 4:1 a.m.19 views

GHSA-86QJ-4H55-FVPW OpenStack Heat template URL information leakage

OpenStack Orchestration API Heat 2013.2 through 2013.2.3 and 2014.1, when creating the stack for a template using a provider template, allows remote authenticated users to obtain the provider template URL via the resource-type-list...

3.5CVSS5.8AI score0.00428EPSS
Exploits0References11
OSV
OSVadded 2014/04/15 2:55 p.m.1 views

DEBIAN-CVE-2014-0157

Cross-site scripting XSS vulnerability in the Horizon Orchestration dashboard in OpenStack Dashboard aka Horizon 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to inject arbitrary web script or HTML via the description field of a Heat template...

4.3CVSS6AI score0.00264EPSS
Exploits1References1
OSV
OSVadded 2014/03/25 4:55 p.m.0 views

UBUNTU-CVE-2014-2573

The VMWare driver in OpenStack Compute Nova 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by requesting the VM be put into rescue and then deleting the imag...

2.3CVSS5.8AI score0.00106EPSS
Exploits1References3
Prion
Prionadded 2013/11/23 5:55 p.m.20 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in OpenStack Dashboard Horizon 2013.2 and earlier allow local users to inject arbitrary web script or HTML via an instance name to 1 "Volumes" or 2 "Network Topology" page...

4.3CVSS5.5AI score0.00478EPSS
Exploits0References6Affected Software3
OSV
OSVadded 2013/11/05 8:55 p.m.1 views

DEBIAN-CVE-2013-4497

The XenAPI backend in OpenStack Compute Nova Folsom, Grizzly, and Havana before 2013.2 does not properly apply security groups 1 when resizing an image or 2 during live migration, which allows remote attackers to bypass intended restrictions...

6.4CVSS7AI score0.0021EPSS
Exploits0References1
Rows per page
Query Builder