Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7743 matches found

OSV
OSVadded 2014/11/11 7:39 p.m.0 views

USN-2408-1 neutron vulnerability

Elena Ezhova discovered that OpenStack Neutron did not properly perform access control checks for attributes. A remote authenticated attacker could exploit this to bypass intended access controls and reset admin-only attributes to default values...

4CVSS5.8AI score0.00573EPSS
Exploits0References2
Ubuntu
Ubuntuadded 2014/11/11 7:30 p.m.57 views

USN-2407-1: OpenStack Nova vulnerabilities

Garth Mollett discovered that OpenStack Nova did not properly clean up an instance when using rescue mode with the VMWare driver. A remove authenticated user could exploit this to bypass intended quota limits. By default, Ubuntu does not use the VMWare driver. CVE-2014-3608 Amrith Kumar discovere...

2.7CVSS5.2AI score0.00689EPSS
Exploits2
OSV
OSVadded 2014/11/11 7:30 p.m.2 views

USN-2407-1 nova vulnerabilities

Garth Mollett discovered that OpenStack Nova did not properly clean up an instance when using rescue mode with the VMWare driver. A remove authenticated user could exploit this to bypass intended quota limits. By default, Ubuntu does not use the VMWare driver. CVE-2014-3608 Amrith Kumar discovere...

2.7CVSS5.8AI score0.00689EPSS
Exploits2References3
Ubuntu
Ubuntuadded 2014/11/11 7:22 p.m.49 views

USN-2406-1: OpenStack Keystone vulnerability

Brant Knudson discovered that OpenStack Keystone did not properly perform input sanitization when performing endpoint catalog substitution. A remote attacker with privileged access for creating endpoints could exploit this to obtain sensitive information...

4CVSS5.2AI score0.00426EPSS
Exploits1
OSV
OSVadded 2014/11/11 7:15 p.m.4 views

USN-2405-1 cinder vulnerabilities

Duncan Thomas discovered that OpenStack Cinder did not properly track the file format when using the GlusterFS of Smbfs drivers. A remote authenticated user could exploit this to potentially obtain file contents from the compute host. CVE-2014-3641 Amrith Kumar discovered that OpenStack Cinder di...

4CVSS5.8AI score0.00329EPSS
Exploits0References3
Ubuntu
Ubuntuadded 2014/11/11 7:15 p.m.51 views

USN-2405-1: OpenStack Cinder vulnerabilities

Duncan Thomas discovered that OpenStack Cinder did not properly track the file format when using the GlusterFS of Smbfs drivers. A remote authenticated user could exploit this to potentially obtain file contents from the compute host. CVE-2014-3641 Amrith Kumar discovered that OpenStack Cinder di...

4CVSS5.3AI score0.00329EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2014/11/08 12:0 a.m.29 views

RHEL 6 : Storage Server (RHSA-2014:0409)

Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Storage 2.1. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

6CVSS5.3AI score0.00455EPSS
Exploits0References3
OSV
OSVadded 2014/11/03 11:55 p.m.2 views

DEBIAN-CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.2AI score0.00353EPSS
Exploits1References1
OSV
OSVadded 2014/11/03 11:55 p.m.6 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.3AI score
Exploits0References8
NVD
NVDadded 2014/11/03 11:55 p.m.14 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.4AI score0.00353EPSS
Exploits1References3
OSV
OSVadded 2014/11/03 11:55 p.m.1 views

UBUNTU-CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.1AI score0.00353EPSS
Exploits1References3
Prion
Prionadded 2014/11/03 11:55 p.m.19 views

Design/Logic Flaw

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7AI score0.00353EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCveadded 2014/11/03 11:55 p.m.22 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.1AI score0.00353EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2014/11/03 11:0 p.m.27 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.4AI score0.00353EPSS
Exploits1
CVE
CVEadded 2014/11/03 11:0 p.m.47 views

CVE-2014-0204

The CVE-2014-0204 issue affects OpenStack Keystone where a role assigned to a group sharing the same ID as a user can allow remote authenticated users to gain privileges tied to that group ID. Context from connected documents confirms this is rooted in Keystone before 2014.1.1, causing privilege ...

6.5CVSS7.4AI score0.00353EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2014/11/03 11:0 p.m.16 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

7.4AI score0.00353EPSS
Exploits1References3
RedHat Linux
RedHat Linuxadded 2014/11/03 8:47 a.m.22 views

Important: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring...

4CVSS5.8AI score0.00426EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2014/11/03 8:47 a.m.23 views

Important: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring...

4CVSS5.8AI score0.00426EPSS
Exploits1References7
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.30 views

Moderate: Red Hat Security Advisory: python-keystoneclient security and bug fix update

Updated python-keystoneclient packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

4.3CVSS5.8AI score0.00643EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.28 views

Moderate: Red Hat Security Advisory: python-keystoneclient security and bug fix update

Updated python-keystoneclient packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

4.3CVSS5.8AI score0.00643EPSS
Exploits0References5
Rows per page
Query Builder