Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7716 matches found

NVD
NVDadded 2014/02/02 12:55 a.m.18 views

CVE-2013-6491

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS5.9AI score0.00456EPSS
Exploits0References4
Prion
Prionadded 2014/02/02 12:55 a.m.16 views

Design/Logic Flaw

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS6.5AI score0.00456EPSS
Exploits0References4Affected Software2
Cvelist
Cvelistadded 2014/02/02 12:0 a.m.18 views

CVE-2013-6491

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

5.8AI score0.00456EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2014/02/02 12:0 a.m.32 views

CVE-2013-6491

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS5.9AI score0.00456EPSS
Exploits0
CVE
CVEadded 2014/02/02 12:0 a.m.72 views

CVE-2013-6491

CVE-2013-6491 affects the OpenStack Oslo stack (OpenStack Nova) using the python-qpid client; specifically, the common/rpc/impl_qpid.py path does not enforce SSL when qpid_protocol is set to ssl, allowing remote attackers to sniff network traffic and obtain sensitive information. The root cause i...

4.3CVSS5.9AI score0.00456EPSS
Exploits0References4Affected Software2
OSV
OSVadded 2014/02/01 12:0 a.m.1 views

UBUNTU-CVE-2013-6491

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS5.8AI score0.00456EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2014/02/01 12:0 a.m.24 views

CVE-2013-6491

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS5.9AI score0.00456EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2014/01/30 7:58 p.m.1 views

openstack-keystone: unintentional role granting with Keystone LDAP backend

The LDAP backend in OpenStack Identity Keystone Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to gain privileges...

3.3CVSS5.8AI score0.00151EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2014/01/30 7:58 p.m.28 views

Moderate: Red Hat Security Advisory: openstack-keystone security update

Updated openstack-keystone packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

3.3CVSS5.7AI score0.00151EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2014/01/30 7:58 p.m.39 views

Moderate: Red Hat Security Advisory: openstack-nova security and bug fix update

Updated openstack-nova packages that fix two security issues and three bugs are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...

4.3CVSS5.7AI score0.00456EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2014/01/30 7:58 p.m.3 views

Nova: Compressed disk image DoS

OpenStack Compute Nova Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service host file system disk consumption via a compressed QCOW2 image. NOTE: this issue is due to an incomplete fix for CVE-2013-2096...

2.1CVSS5.8AI score0.00155EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2014/01/30 7:58 p.m.1 views

nova: qpid SSL configuration

The python-qpid client common/rpc/implqpid.py in OpenStack Oslo before 2013.2 does not enforce SSL connections when qpidprotocol is set to ssl, which allows remote attackers to obtain sensitive information by sniffing the network...

4.3CVSS5.9AI score0.00456EPSS
Exploits0References4
NVD
NVDadded 2014/01/23 9:55 p.m.18 views

CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

3.3CVSS6AI score0.00132EPSS
Exploits2References3
OSV
OSVadded 2014/01/23 9:55 p.m.4 views

CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

5.9AI score
Exploits0References6
OSV
OSVadded 2014/01/23 9:55 p.m.1 views

DEBIAN-CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

3.3CVSS6.5AI score0.00132EPSS
Exploits2References1
Prion
Prionadded 2014/01/23 9:55 p.m.18 views

Design/Logic Flaw

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

3.3CVSS6.5AI score0.00132EPSS
Exploits2References3Affected Software1
UbuntuCve
UbuntuCveadded 2014/01/23 9:55 p.m.26 views

CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

3.3CVSS5.9AI score0.00132EPSS
Exploits2References2
CVE
CVEadded 2014/01/23 9:0 p.m.69 views

CVE-2013-7048

CVE-2013-7048 affects OpenStack Nova (Grizzly 2013.1.4, Havana 2013.2.1 and earlier). The libvirt/live-snapshot path permissions were world-writable/world-readable in the temporary directory used for live snapshots, allowing a local attacker with shell access to read and modify snapshots before u...

3.3CVSS6AI score0.00132EPSS
Exploits2References3Affected Software1
Debian CVE
Debian CVEadded 2014/01/23 9:0 p.m.22 views

CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

3.3CVSS6AI score0.00132EPSS
Exploits2
Cvelist
Cvelistadded 2014/01/23 9:0 p.m.24 views

CVE-2013-7048

OpenStack Compute Nova Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots...

5.9AI score0.00132EPSS
Exploits2References3
Rows per page
Query Builder