8 matches found
EUVD-2026-27406
An issue was discovered in OpenStack Horizon 25.6 and 25.7 before 25.7.3. There is a write operation to the session storage backend before authentication and thus storage can be exhausted by unauthenticated requests. This is a regression of the CVE-2014-8124 fix...
CVE-2026-43002
An issue was discovered in OpenStack Horizon 25.6 and 25.7 before 25.7.3. There is a write operation to the session storage backend before authentication and thus storage can be exhausted by unauthenticated requests. This is a regression of the CVE-2014-8124 fix...
RHEL 7 : python-django-horizon and python-django-openstack-auth update (Moderate) (RHSA-2015:0839)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:0839 advisory. OpenStack Dashboard horizon provides administrators and users a graphical interface to access, provision and automate cloud-based resources. The...
Moderate: Red Hat Security Advisory: python-django-horizon and python-django-openstack-auth update
Updated python-django-horizon and python-django-openstack-auth packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security...
Moderate: Red Hat Security Advisory: python-django-horizon and python-django-openstack-auth update
Updated python-django-horizon and python-django-openstack-auth packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security...
Fedora 21 : python-django-horizon-2014.1.3-2.fc21 (2014-17177)
fix for CVE-2014-8124 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
CVE-2014-8124
OpenStack Dashboard Horizon before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle session records when using a db or memcached session engine, which allows remote attackers to cause a denial of service via a large number of requests to the login page...
CVE-2014-8124
CVE-2014-8124 affects OpenStack Horizon (Dashboard) prior to the 2014.1.3 series and the 2014.2.x series before 2014.2.1 when using db or memcached session engines. The issue is a denial of service caused by improper handling of session records, allowing an attacker to generate a large number of ...