CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2017/07/11 5:29 p.m.•3 views

CVE-2017-10600

5.9CVSS5.8AI score0.00286EPSS

OSV•added 2017/07/11 5:29 p.m.•2 views

UBUNTU-CVE-2017-10600

5.9CVSS6.2AI score0.00286EPSS

Exploits0References4

Cvelist•added 2017/07/11 5:0 p.m.•27 views

CVE-2017-10600

5.6AI score0.00286EPSS

CVE•added 2017/07/11 5:0 p.m.•61 views

CVE-2017-10600

CVE-2017-10600 affects ubuntu-image 1.0 (before 2017-07-07). When run as non-root, it creates files in the resulting image with the UID of the invoking user, enabling a local attacker who shares that UID to access cloud-init and snapd directories after boot. This is a local vulnerability with pot...

5.9CVSS5.6AI score0.00286EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2017/03/24 12:0 a.m.•34 views

Fedora 25 : cloud-init (2017-837115524e)

This update fixes a systemd service ordering issue in cloud-init and backports a fix for a security issue in which instances run in EC2 write IAM instance profile credentials to disk. To work around the security issue without updating cloud-init, wait at least six hours between creating a bundle ...

OpenVAS•added 2017/03/24 12:0 a.m.•16 views

Fedora Update for cloud-init FEDORA-2017-837115524e

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Fedora•added 2017/03/20 10:20 p.m.•9 views

[SECURITY] Fedora 26 Update: cloud-init-0.7.9-4.fc26

Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts...

2.1AI score

Tenable Nessus•added 2016/11/11 12:0 a.m.•18 views

Amazon Linux AMI : cloud-init (ALAS-2016-763)

It was discovered that cloud-init in the Amazon Linux AMI wrote IAM role credentials from the instance metadata service to files readable by the root user in /var/lib/cloud. An application with root privileges, a container with access to the relevant files, or a root user of an AMI derived from a...

Amazon•added 2016/11/10 12:0 a.m.•30 views

Important: cloud-init

Issue Overview: It was discovered that cloud-init in the Amazon Linux AMI wrote IAM role credentials from the instance metadata service to files readable by the root user in /var/lib/cloud. An application with root privileges, a container with access to the relevant files, or a root user of an AM...

7.1AI score

Tenable Nessus•added 2015/01/14 12:0 a.m.•44 views

RHEL 6 : cloud-init (RHSA-2015:0042)

Updated cloud-init packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Common for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base...

4.3CVSS7.2AI score0.04857EPSS

Exploits0References3

RedHat Linux•added 2015/01/13 8:24 p.m.•47 views

Low: Red Hat Security Advisory: cloud-init security, bug fix, and enhancement update

4.3CVSS6.6AI score0.04857EPSS

RedHat Linux•added 2014/07/17 4:28 a.m.•29 views

Moderate: Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update

Updated openstack-neutron packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability...

9CVSS5.8AI score0.02918EPSS

Exploits0References5

OpenVAS•added 2012/09/27 12:0 a.m.•11 views

Fedora Update for cloud-init FEDORA-2012-14189

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5AI score

OpenVAS•added 2012/09/27 12:0 a.m.•13 views

Fedora Update for cloud-init FEDORA-2012-14121

7.5AI score

OpenVAS•added 2012/09/27 12:0 a.m.•5 views

Fedora Update for cloud-init FEDORA-2012-14189

Check for the Version of cloud-init OpenVAS Vulnerability Test Fedora Update for cloud-init FEDORA-2012-14189 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

7.4AI score

Tenable Nessus•added 2012/09/27 12:0 a.m.•13 views

Fedora 16 : cloud-init-0.6.3-0.5.bzr532.fc16 (2012-14189)

This update changes the URL that cloud-init uses as a fallback for instance metadata when http://169.254.169.254/ is not reachable from http://instance-data:8773/ to http://instance-data.:8773/ . It also fixes two systemd-related bugs. Note that the former will require DNS server reconfiguration ...

Tenable Nessus•added 2012/09/27 12:0 a.m.•23 views

Exploits0References3

Fedora 17 : cloud-init-0.6.3-0.5.bzr532.fc17 (2012-14121)

Fedora•added 2012/09/26 9:3 a.m.•14 views

Exploits0References3

[SECURITY] Fedora 17 Update: cloud-init-0.6.3-0.5.bzr532.fc17

Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts...

2.1AI score

Fedora•added 2012/09/26 8:48 a.m.•13 views

[SECURITY] Fedora 16 Update: cloud-init-0.6.3-0.5.bzr532.fc16

Cloud-init is a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install ssh keys and to let the user run various scripts...

2.1AI score