Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3786 matches found

OSV
OSVadded 2016/04/12 2:59 p.m.5 views

CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS4.9AI score
Exploits0References4
Prion
Prionadded 2016/04/12 2:59 p.m.15 views

Code injection

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

3.5CVSS6.6AI score0.00339EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2016/04/12 2:0 p.m.84 views

CVE-2016-2140

CVE-2016-2140 concerns OpenStack Nova’s libvirt driver. When using raw storage with use_cow_images = false, crafted qcow2 headers could allow a remote authenticated user to read arbitrary files on the host via an ephemeral or root disk. The issue affects OpenStack Compute (Nova) releases prior to...

5.3CVSS5.1AI score0.00339EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2016/04/12 2:0 p.m.34 views

CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3AI score0.00339EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2016/04/12 2:0 p.m.27 views

CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS5.5AI score0.00339EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2016/04/12 12:0 a.m.21 views

CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS6.6AI score0.00339EPSS
Exploits0References3
Openbugbounty
Openbugbountyadded 2016/04/05 9:14 p.m.13 views

ec2-52-23-129-122.compute-1.amazonaws.com XSS vulnerability

Vulnerable URL: http://ec2-52-23-129-122.compute-1.amazonaws.com/cgi-bin/wxis.exe/iah/?IsisScript=iah/iah.xis= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculat...

6.3AI score
Exploits0
CNVD
CNVDadded 2016/03/09 12:0 a.m.1 views

OpenStack Compute Information Disclosure Vulnerability

OpenStack is a cloud platform management program developed by the National Aeronautics and Space Administration NASA in collaboration with Rackspace, Inc. in the U.S. OpenStack Compute Nova is one of the cloud computing construct controllers written in the Python language. The OpenStack Compute...

5.3CVSS7.9AI score0.00339EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2016/03/08 10:53 p.m.26 views

Important: Red Hat Security Advisory: openstack-nova security update

Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo for RHEL 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

5.3CVSS6.3AI score0.00339EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2016/03/08 10:53 p.m.30 views

Important: Red Hat Security Advisory: openstack-nova security update

Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 6.0 Juno for RHEL 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

5.3CVSS6.3AI score0.00339EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2016/03/08 10:53 p.m.27 views

Important: Red Hat Security Advisory: openstack-nova security update

Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

5.3CVSS6.3AI score0.00339EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2016/03/08 10:53 p.m.28 views

Important: Red Hat Security Advisory: openstack-nova security update

Updated openstack-nova packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for RHEL 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

5.3CVSS6.3AI score0.00339EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2016/03/07 8:0 a.m.1 views

Information Disclosure Vulnerability in Hitachi Compute Systems Manager

Overview An Information Disclosure Vulnerability was found in Hitachi Compute Systems Manager. Impact An attacker might exploit this vulnerability to obtain sensitive session information. Solution Please refer to the 'Vendor Information' section for the official countermeasure and take appropriat...

3.5CVSS6.2AI score
Exploits0References2
The Hacker News
The Hacker Newsadded 2016/02/29 4:35 a.m.17 views

Raspberry Pi 3 — New $35 MicroComputer with Built-in Wi-Fi and Bluetooth

While celebrating its computer's fourth birthday, the Raspberry Pi Foundation has launched a brand new Raspberry Pi today. Great news for all Micro-computing fans – A new, powerful Raspberry Pi 3 Model B in town. Months after introducing just $5 Raspberry Pi Zero, Raspberry Pi Foundation has...

6.6AI score
Exploits0
NVD
NVDadded 2016/01/15 7:59 p.m.13 views

CVE-2015-8749

The volumeutils.parsevolumeinfo function in OpenStack Compute Nova before 2015.1.3 kilo and 12.0.x before 12.0.1 liberty includes the connectioninfo dictionary in the StorageError message when using the Xen backend, which might allow attackers to obtain sensitive password information by reading l...

5.9CVSS5.6AI score0.00942EPSS
Exploits0References5
Prion
Prionadded 2016/01/15 7:59 p.m.18 views

Design/Logic Flaw

The volumeutils.parsevolumeinfo function in OpenStack Compute Nova before 2015.1.3 kilo and 12.0.x before 12.0.1 liberty includes the connectioninfo dictionary in the StorageError message when using the Xen backend, which might allow attackers to obtain sensitive password information by reading l...

4.3CVSS6.7AI score0.00942EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2016/01/15 7:0 p.m.21 views

CVE-2015-8749

The volumeutils.parsevolumeinfo function in OpenStack Compute Nova before 2015.1.3 kilo and 12.0.x before 12.0.1 liberty includes the connectioninfo dictionary in the StorageError message when using the Xen backend, which might allow attackers to obtain sensitive password information by reading l...

5.8AI score0.00942EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2016/01/15 12:0 a.m.23 views

CVE-2015-8749

The volumeutils.parsevolumeinfo function in OpenStack Compute Nova before 2015.1.3 kilo and 12.0.x before 12.0.1 liberty includes the connectioninfo dictionary in the StorageError message when using the Xen backend, which might allow attackers to obtain sensitive password information by reading l...

5.9CVSS6.6AI score0.00942EPSS
Exploits0References3
CNVD
CNVDadded 2016/01/15 12:0 a.m.1 views

OpenStack Compute(liberty) directory traversal vulnerability

OpenStack is a cloud platform management project.OpenStack Compute Nova is one of the cloud computing construct controllers written in the Python language and is part of the IaaS system. OpenStack Compute has a security vulnerability. When a program spawns an instance using libvirt and sets...

3.5CVSS5.9AI score0.00172EPSS
Exploits0References1
OSV
OSVadded 2016/01/12 7:59 p.m.6 views

CVE-2015-7548

OpenStack Compute Nova before 2015.1.3 kilo and 12.0.x before 12.0.1 liberty, when using libvirt to spawn instances and usecowimages is set to false, allow remote authenticated users to read arbitrary files by overwriting an instance disk with a crafted image and requesting a snapshot...

3.5CVSS3.6AI score
Exploits0References3
Rows per page
Query Builder