23 matches found
EUVD-2015-6797
Malware in sbrugna...
EUVD-2016-9376
Malware in sbrugna...
EUVD-2016-9368
Malware in sbrugna...
EUVD-2014-4939
Malware in sbrugna...
CVE-2016-8528
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 through 4.3.1 was found...
CVE-2016-8528
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 through 4.3.1 was found...
CVE-2016-8520
HPE Helion Eucalyptus v4.3.0 and earlier does not correctly check IAM user's permissions for accessing versioned objects and ACLs. In some cases, authenticated users with S3 permissions could also access versioned data...
Privilege escalation
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 through 4.3.1 was found...
CVE-2016-8520
HPE Helion Eucalyptus v4.3.0 and earlier does not correctly check IAM user's permissions for accessing versioned objects and ACLs. In some cases, authenticated users with S3 permissions could also access versioned data...
CVE-2016-8528
A Remote Escalation of Privilege vulnerability in HPE Helion Eucalyptus version 3.3.0 through 4.3.1 was found...
CVE-2016-8528
CVE-2016-8528 describes a Remote Escalation of Privilege in HP Helion Eucalyptus versions 3.3.0 through 4.3.1. The vulnerability affects the Eucalyptus component stack, enabling an unauthenticated or low-privileged attacker to escalate privileges over the network (as indicated by the NVD CVSS3 ve...
HP Helion Eucalyptus Remote Privilege Elevation Vulnerability
HP Helion Eucalyptus is an open source for building Amazon Web Services AWS compatible private cloud solutions from Hewlett-Packard HP. A remote elevation of privilege vulnerability exists in HP Helion Eucalyptus. A remote attacker could exploit the vulnerability to gain elevated privileges...
HP Helion Eucalyptus Remote Privilege Escalation Vulnerability
HP Helion Eucalyptus is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:eucalyptus:eucalyptus"...
HPE Helion Eucalyptus Security Bypass Vulnerability
HPE Helion Eucalyptus is an open source for building Amazon Web Services AWS compatible private cloud solutions. A security bypass vulnerability exists in HPE Helion Eucalyptus, which allows remote attackers to submit a special request to perform an unauthorized operation...
HP Helion Eucalyptus Detection
Detection of HP Helion Eucalyptus The script sends a HTTP connection request to the server and attempts to detect the presence of HP Helion Eucalyptus and to extract its version. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...
CVE-2015-6861
HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's account...
Design/Logic Flaw
HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's account...
CVE-2015-6861
CVE-2015-6861 affects HPE Helion Eucalyptus (versions 3.4.0–4.2.0). The issue allows remote authenticated users to bypass the intended AssumeRole permission and assume an IAM role by abusing a policy setting on a user’s account. Impact is described as bypassing IAM permission controls with potent...
CVE-2015-6861
HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's account...
CVE-2014-5040
HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus 4.2.x before 4.2.1 allow remote authenticated users to bypass intended access restrictions and modify arbitrary 1 access key credentials by leveraging knowledge of a key ID or 2 signing certificates by leveraging knowledge of a...