Lucene search
K

9 matches found

Github Security Blog
Github Security Blog
added 2022/05/14 1:58 a.m.36 views

OpenStack Compute (Nova)'s VMWare driver vulnerable to denial of service

The VMWare driver in OpenStack Compute Nova before 2014.1.3 allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by putting the VM into the rescue state, suspending it, which puts into an ERROR state, and then deleting the image. NOTE: thi...

2.7CVSS6AI score0.0171EPSS
Exploits1References12Affected Software1
OSV
OSV
added 2022/05/14 1:58 a.m.28 views

GHSA-92HC-C226-32Q7 OpenStack Compute (Nova)'s VMWare driver vulnerable to denial of service

The VMWare driver in OpenStack Compute Nova before 2014.1.3 allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by putting the VM into the rescue state, suspending it, which puts into an ERROR state, and then deleting the image. NOTE: thi...

2.7CVSS5.9AI score0.0171EPSS
Exploits1References12
Veracode
Veracode
added 2019/01/15 9:2 a.m.26 views

Denial Of Service (DoS)

openstack-nova is vulnerable to denial of service DoS attacks. The vulnerability exists as the VMWare driver in OpenStack Compute Nova before 2014.1.3 allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by putting the VM into the rescue...

2.7CVSS5.6AI score0.0171EPSS
Exploits2References12Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.25 views

Oracle Solaris Third-Party Patch Update : nova (multiple_vulnerabilities_in_nova)

The remote Solaris system is missing necessary patches to address security updates : - The VMWare driver in OpenStack Compute Nova 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service...

2.7CVSS5.5AI score0.0171EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2014/11/03 8:25 a.m.38 views

Important: Red Hat Security Advisory: openstack-nova security, bug fix, and enhancement update

Updated openstack-nova packages that fix two security issues, multiple bugs, and add enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common...

6.5CVSS5.8AI score0.02027EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2014/11/03 8:25 a.m.33 views

Important: Red Hat Security Advisory: openstack-nova security, bug fix, and enhancement update

Updated openstack-nova packages that fix two security issues, multiple bugs, and add enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common...

6.5CVSS5.8AI score0.02027EPSS
Exploits3References5
NVD
NVD
added 2014/10/06 2:55 p.m.31 views

CVE-2014-3608

The VMWare driver in OpenStack Compute Nova before 2014.1.3 allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by putting the VM into the rescue state, suspending it, which puts into an ERROR state, and then deleting the image. NOTE: thi...

2.7CVSS6.2AI score0.0171EPSS
Exploits1References5
Prion
Prion
added 2014/10/06 2:55 p.m.27 views

Design/Logic Flaw

The VMWare driver in OpenStack Compute Nova before 2014.1.3 allows remote authenticated users to bypass the quota limit and cause a denial of service resource consumption by putting the VM into the rescue state, suspending it, which puts into an ERROR state, and then deleting the image. NOTE: thi...

2.7CVSS6.4AI score0.0171EPSS
Exploits2References5Affected Software1
CVE
CVE
added 2014/03/25 3:0 p.m.83 views

CVE-2014-2573

The VMware driver in OpenStack Compute (Nova) 2013.2–2013.2.2 does not correctly place VMs into RESCUE, allowing remote authenticated users to bypass quota and trigger a denial of service by rescuing the VM and then deleting the image. Related advisories (GHSA/OSV) reiterate the vulnerability and...

2.3CVSS6.1AI score0.00705EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder