CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2016/04/13 5:59 p.m.•5 views

CVE-2016-0757

4.3CVSS4.3AI score

Prion•added 2016/04/13 5:59 p.m.•25 views

Design/Logic Flaw

4CVSS6.7AI score0.01466EPSS

Exploits0References3Affected Software1

Cvelist•added 2016/04/13 5:0 p.m.•35 views

CVE-2016-0757

4.1AI score0.01466EPSS

CVE•added 2016/04/13 5:0 p.m.•82 views

CVE-2016-0757

OpenStack Image Service (Glance) vulnerable CVE-2016-0757 affects 11.0.x before 11.0.2 (liberty) and 2015.1.3 (kilo) when show_multiple_locations is enabled. The issue allows a remote authenticated attacker to change image status and upload new image data by removing the last location of an image...

4.3CVSS4.1AI score0.01466EPSS

Exploits0References3Affected Software1

Debian CVE•added 2016/04/13 5:0 p.m.•32 views

CVE-2016-0757

4.3CVSS4.5AI score0.01466EPSS

Exploits0

UbuntuCve•added 2016/04/13 12:0 a.m.•21 views

CVE-2016-0757

4.3CVSS5.9AI score0.01466EPSS

Positive Technologies•added 2016/04/13 12:0 a.m.•3 views

PT-2016-4404 · Openstack +1 · Openstack Image Service +1

Name of the Vulnerable Software and Affected Versions: OpenStack Image Service Glance versions prior to 2015.1.3 kilo OpenStack Image Service Glance versions 11.0.x prior to 11.0.2 liberty Description: The issue allows remote authenticated users to tamper with images, potentially compromising the...

6.8CVSS4.2AI score0.02376EPSS

Exploits0References33

OSV•added 2016/04/13 12:0 a.m.•1 views

UBUNTU-CVE-2016-0757

4.3CVSS5.8AI score0.01466EPSS

NVD•added 2016/04/12 2:59 p.m.•30 views

CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS5AI score0.02091EPSS

OSV•added 2016/04/12 2:59 p.m.•2 views

DEBIAN-CVE-2016-2140

5.3CVSS5.3AI score0.02091EPSS

OSV•added 2016/04/12 2:59 p.m.•8 views

CVE-2016-2140

5.3CVSS4.9AI score

Prion•added 2016/04/12 2:59 p.m.•16 views

Code injection

3.5CVSS6.6AI score0.02091EPSS

Exploits0References4Affected Software1

Cvelist•added 2016/04/12 2:0 p.m.•35 views

CVE-2016-2140

5.3AI score0.02091EPSS

Debian CVE•added 2016/04/12 2:0 p.m.•29 views

CVE-2016-2140

5.3CVSS5.5AI score0.02091EPSS

Exploits0

CVE•added 2016/04/12 2:0 p.m.•87 views

CVE-2016-2140

CVE-2016-2140 concerns OpenStack Nova’s libvirt driver. When using raw storage with use_cow_images = false, crafted qcow2 headers could allow a remote authenticated user to read arbitrary files on the host via an ephemeral or root disk. The issue affects OpenStack Compute (Nova) releases prior to...

5.3CVSS5.1AI score0.02091EPSS

Exploits0References4Affected Software1

UbuntuCve•added 2016/04/12 12:0 a.m.•23 views

CVE-2016-2140

5.3CVSS6.6AI score0.02091EPSS

CNVD•added 2016/04/12 12:0 a.m.•2 views

Red Hat Enterprise Linux OpenStack Platform Information Disclosure Vulnerability

Red Hat Enterprise Linux OpenStack Platform is an open source IaaS Infrastructure-as-a-Service solution from Red Hat, Inc. The solution supports the creation and management of private, public, and hybrid clouds.TripleO Heat templates tripleo-heat-templates is a set of tools for describing a sampl...

7.5CVSS6.8AI score0.01517EPSS

OSV•added 2016/04/12 12:0 a.m.•2 views

UBUNTU-CVE-2016-2140

5.3CVSS6.5AI score0.02091EPSS

NVD•added 2016/04/11 9:59 p.m.•21 views

CVE-2015-5329

The TripleO Heat templates tripleo-heat-templates, as used in Red Hat Enterprise Linux OpenStack Platform 7.0, do not properly use the configured RabbitMQ credentials, which makes it easier for remote attackers to obtain access to services in deployed overclouds by leveraging knowledge of the...

7.5CVSS7.1AI score0.01517EPSS