CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/04/22 6:4 p.m.•1 views

USN-8199-1 glance vulnerabilities

Martin Kaesberger discovered that OpenStack Glance's image processing could return the contents of arbitrary files. An attacker could possibly use this issue to exfiltrate sensitive data. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2024-32498 Hyeongeun Ji and Abhishek Keka...

6.5CVSS5.8AI score0.00214EPSS

Ubuntu•added 2026/04/22 6:4 p.m.•6 views

USN-8199-1: OpenStack Glance vulnerabilities

6.5CVSS5.9AI score0.00214EPSS

Exploits1

Snyk•added 2026/03/31 7:50 a.m.•2 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to the use of HTTP redirects. An attacker can access internal services by leveraging HTTP redirects to bypass URL validation checks. This is only exploitable if the web-download, glance-download impo...

5.3CVSS5.9AI score0.00041EPSS

OSV•added 2026/03/31 6:31 a.m.•5 views

GHSA-MC26-Q38V-83GV OpenStack Glance is affected by Server-Side Request Forgery (SSRF)

OpenStack Glance versions = 30.0.0 30.1.1, == 31.0.0 are affected by Server-Side Request Forgery SSRF. By use of HTTP redirects, an authenticated user can bypass URL validation checks and redirect to internal services. Only the glance image import functionality is affected. In particular, the...

EUVD•added 2026/03/31 6:31 a.m.•0 views

Exploits1References4

EUVD-2026-17323

OpenStack Glance =30.0.0 30.1.1, ==31.0.0 is affected by Server-Side Request Forgery SSRF. By use of HTTP redirects, an authenticated user can bypass URL validation checks and redirect to internal services. Only glance image import functionality is affected. In particular, the web-download and...

Github Security Blog•added 2026/03/31 6:31 a.m.•2 views

OpenStack Glance is affected by Server-Side Request Forgery (SSRF)

Exploits1References4Affected Software1

NVD•added 2026/03/31 6:16 a.m.•2 views

CVE-2026-34881

OpenStack Glance before 29.1.1, 30.x before 30.1.1, and 31.0.0 is affected by Server-Side Request Forgery SSRF. By use of HTTP redirects, an authenticated user can bypass URL validation checks and redirect to internal services. Only glance image import functionality is affected. In particular, th...

5CVSS0.00041EPSS

OSV•added 2026/03/31 6:16 a.m.•1 views

UBUNTU-CVE-2026-34881

5CVSS5.8AI score0.00041EPSS

Exploits1References6

UbuntuCve•added 2026/03/31 6:16 a.m.•3 views

CVE-2026-34881

CVE•added 2026/03/31 5:29 a.m.•13 views

Exploits1References5

CVE-2026-34881

OpenStack Glance versions affected: =30.0.0

Exploits1References2Affected Software1

Cvelist•added 2026/03/31 5:29 a.m.•19 views

CVE-2026-34881

5CVSS0.00041EPSS

ATTACKERKB•added 2026/03/31 5:29 a.m.•0 views

CVE-2026-34881

Exploits1References3Affected Software1

Vulnrichment•added 2026/03/31 5:29 a.m.•2 views

CVE-2026-34881

Debian CVE•added 2026/03/31 5:29 a.m.•1 views

CVE-2026-34881

5CVSS5.2AI score0.00041EPSS

Exploits1

CNNVD•added 2026/03/31 12:0 a.m.•2 views

OpenStack Glance 安全漏洞

OpenStack Glance is an open-source service for storing and managing virtual machine images within OpenStack. Vulnerabilities exist in versions of OpenStack Glance prior to 29.1.1, as well as versions from 30.0.0 to 30.1.1 and 31.0.0. These vulnerabilities stem from URL validation checks that can ...

5CVSS5.8AI score0.00041EPSS

Positive Technologies•added 2026/03/31 12:0 a.m.•1 views

PT-2026-29197

Tenable Nessus•added 2026/03/31 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-34881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Glance before 29.1.1, 30.x before 30.1.1, and 31.0.0 is affected by Server-Side Request Forgery SSRF. By use of HTTP redirects, an authenticated user...

5CVSS5.8AI score0.00041EPSS