Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.5 views

SUSE CVE-2014-3641

The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote authenticated users to obtain file data from the Cinder-volume host by cloning and attaching a volume with a crafted qcow2 header...

4CVSS6.7AI score0.0186EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:6 a.m.3 views

SUSE CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS7.5AI score0.02091EPSS
Exploits0References4
OSV
OSV
added 2016/04/12 2:59 p.m.3 views

DEBIAN-CVE-2016-2140

The libvirt driver in OpenStack Compute Nova before 2015.1.4 kilo and 12.0.x before 12.0.3 liberty, when using raw storage and usecowimages is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk...

5.3CVSS5.3AI score0.02091EPSS
Exploits0References1
OSV
OSV
added 2015/06/25 12:0 a.m.5 views

UBUNTU-CVE-2015-1851

OpenStack Cinder before 2014.1.5 icehouse, 2014.2.x before 2014.2.4 juno, and 2015.1.x before 2015.1.1 kilo allows remote authenticated users to read arbitrary files via a crafted qcow2 signature in an image to the upload-to-image command...

6.8CVSS5.9AI score0.02618EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/11/03 8:36 a.m.3 views

openstack-cinder: Cinder-volume host data leak to virtual machine instance

The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote authenticated users to obtain file data from the Cinder-volume host by cloning and attaching a volume with a crafted qcow2 header...

4CVSS5.8AI score0.0186EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2014/10/08 7:0 p.m.30 views

CVE-2014-3641

The 1 GlusterFS and 2 Linux Smbfs drivers in OpenStack Cinder before 2014.1.3 allows remote authenticated users to obtain file data from the Cinder-volume host by cloning and attaching a volume with a crafted qcow2 header...

4CVSS5.9AI score0.0186EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2014/10/08 12:0 a.m.3 views

PT-2014-5432

Name of the Vulnerable Software and Affected Versions OpenStack Cinder versions prior to 2014.1.3 Description The issue allows remote authenticated users to obtain file data from the Cinder-volume host. This is achieved by cloning and attaching a volume with a crafted qcow2 header, exploiting the...

4CVSS6AI score0.0186EPSS
Exploits0References26
Rows per page
Query Builder