Lucene search
K

32 matches found

Circl
Circl
added 2024/07/24 8:17 a.m.5 views

CVE-2022-47951

creationtimestamp| type| source ---|---|--- 2024-07-24 08:17:20+00:00| seen| https://t.me/cvedetector/1540 2025-03-31 17:30:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9707...

5.7CVSS6.7AI score0.01025EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2024/07/24 6:31 a.m.24 views

OpenStack Nova vulnerable to unauthorized access to potentially sensitive data

In OpenStack Nova before 27.4.1, 28 before 28.2.1, and 29 before 29.1.1, by supplying a raw format image that is actually a crafted QCOW2 image with a backing file path or VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced...

6.5CVSS6.4AI score0.00941EPSS
Exploits1References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.18 views

RHEL 7 / 8 : Synopsis: Red Hat OpenStack Platform (openstack-cinder) (RHSA-2023:1279)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1279 advisory. Cinder is the replacement of nova-volume in Folsom and beyond, used for block storage. Security Fixes: Arbitrary file access through custom VMDK...

5.7CVSS6.9AI score0.01025EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.22 views

RHEL 7 / 8 : Synopsis: Red Hat OpenStack Platform (openstack-glance) (RHSA-2023:1280)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1280 advisory. OpenStack Image Service code-named Glance provides discovery, registration, and delivery services for virtual disk images. The Image Service API...

5.7CVSS6.9AI score0.01025EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.32 views

RHEL 7 / 8 : Red Hat OpenStack Platform (openstack-nova) (RHSA-2023:1278)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1278 advisory. OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines, creating a redundant...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.17 views

RHEL 9 : Red Hat OpenStack Platform 17.0 (openstack-glance) (RHSA-2023:1017)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1017 advisory. OpenStack Image Service code-named Glance provides discovery,registration, and delivery services for virtual disk images. The Image Service API serve...

5.7CVSS6.9AI score0.01025EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.15 views

RHEL 9 : Red Hat OpenStack Platform 17.0 (openstack-nova) (RHSA-2023:1015)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1015 advisory. OpenStack Compute codename Nova is open source software designed to provision and manage large networks of virtual machines,creating a redundant and...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References4
OSV
OSV
added 2023/04/21 12:47 p.m.6 views

SUSE-SU-2023:1949-1 Security update for openstack-cinder, openstack-nova, python-oslo.utils

This update for openstack-cinder, openstack-nova, python-oslo.utils contains the following fixes: Security fixes included on this update: openstack-cinder, openstack-nova: - CVE-2022-47951: Fixed file access control through custom VMDK flat descriptor. bsc1207321 Non-security changes included on...

5.7CVSS5.6AI score0.01025EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/04/14 12:0 a.m.17 views

FreeBSD : py-cinder -- unauthorized data access (a0509648-65ce-4a1b-855e-520a75bd2549)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a0509648-65ce-4a1b-855e-520a75bd2549 advisory. - An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/03/15 7:59 p.m.112 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform (openstack-nova) security update

An update for openstack-nova is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

5.7CVSS6.7AI score0.01025EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/03/15 7:58 p.m.43 views

Important: Red Hat Security Advisory: Synopsis: Red Hat OpenStack Platform (openstack-cinder) security update

An update for openstack-cinder is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/03/15 7:58 p.m.33 views

Important: Red Hat Security Advisory: Synopsis: Red Hat OpenStack Platform (openstack-glance) security update

An update for openstack-glance is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/02/28 3:48 p.m.27 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 (openstack-glance) security update

An update for openstack-glance is now available for Red Hat OpenStack Platform 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/02/28 3:48 p.m.23 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 (openstack-nova) security update

An update for openstack-nova is now available for Red Hat OpenStack Platform 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.7CVSS6.7AI score0.01025EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/09 12:0 a.m.37 views

Ubuntu 18.04 LTS : Nova vulnerability (USN-5835-5)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5835-5 advisory. USN-5835-3 fixed vulnerabilities in Nova. This update provides the corresponding updates for Ubuntu 18.04 LTS. Tenable has extracted the preceding description blo...

5.7CVSS6.9AI score0.01025EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/02/03 12:0 a.m.17 views

Debian: Security Advisory (DSA-5336-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS5.7AI score0.01025EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/02/02 12:0 a.m.28 views

Debian DSA-5337-1 : nova - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5337 advisory. Guillaume Espanel, Pierre Libeau, Arnaud Morin and Damien Rannou discovered that missing input sanitising in the handling of VMDK images in OpenStack Compute codenamed Nov...

5.7CVSS6.7AI score0.01025EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/02/02 12:0 a.m.25 views

Debian DSA-5336-1 : glance - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5336 advisory. - An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance before 23.0.1, 24.x before 24.1.1, and 25.0.0; and Nova before 24.1.2,...

5.7CVSS6.8AI score0.01025EPSS
Exploits1References6
Debian
Debian
added 2023/02/01 6:32 p.m.45 views

[SECURITY] [DSA 5336-1] glance security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5336-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 01, 2023 https://www.debian.org/security/faq -...

5.7CVSS5.5AI score0.01025EPSS
Exploits1
OpenVAS
OpenVAS
added 2023/02/01 12:0 a.m.15 views

Ubuntu: Security Advisory (USN-5835-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.7CVSS5.7AI score0.01025EPSS
Exploits1References2
Rows per page
Query Builder