Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7799 matches found

Ubuntu
Ubuntuadded 2014/11/11 7:15 p.m.52 views

USN-2405-1: OpenStack Cinder vulnerabilities

Duncan Thomas discovered that OpenStack Cinder did not properly track the file format when using the GlusterFS of Smbfs drivers. A remote authenticated user could exploit this to potentially obtain file contents from the compute host. CVE-2014-3641 Amrith Kumar discovered that OpenStack Cinder di...

4CVSS5.3AI score0.0186EPSS
Exploits0
OSV
OSVadded 2014/11/11 7:15 p.m.4 views

USN-2405-1 cinder vulnerabilities

Duncan Thomas discovered that OpenStack Cinder did not properly track the file format when using the GlusterFS of Smbfs drivers. A remote authenticated user could exploit this to potentially obtain file contents from the compute host. CVE-2014-3641 Amrith Kumar discovered that OpenStack Cinder di...

4CVSS5.8AI score0.0186EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2014/11/08 12:0 a.m.29 views

RHEL 6 : Storage Server (RHSA-2014:0409)

Updated python-keystoneclient packages that fix one security issue are now available for Red Hat Storage 2.1. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

6CVSS5.3AI score0.01092EPSS
Exploits0References3
NVD
NVDadded 2014/11/03 11:55 p.m.21 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.4AI score0.01386EPSS
Exploits1References3
OSV
OSVadded 2014/11/03 11:55 p.m.7 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.3AI score
Exploits0References8
OSV
OSVadded 2014/11/03 11:55 p.m.3 views

DEBIAN-CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.2AI score0.01386EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2014/11/03 11:55 p.m.23 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.1AI score0.01386EPSS
Exploits1References2
Prion
Prionadded 2014/11/03 11:55 p.m.20 views

Design/Logic Flaw

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7AI score0.01386EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2014/11/03 11:55 p.m.1 views

UBUNTU-CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.1AI score0.01386EPSS
Exploits1References3
Cvelist
Cvelistadded 2014/11/03 11:0 p.m.21 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

7.4AI score0.01386EPSS
Exploits1References3
CVE
CVEadded 2014/11/03 11:0 p.m.51 views

CVE-2014-0204

The CVE-2014-0204 issue affects OpenStack Keystone where a role assigned to a group sharing the same ID as a user can allow remote authenticated users to gain privileges tied to that group ID. Context from connected documents confirms this is rooted in Keystone before 2014.1.1, causing privilege ...

6.5CVSS7.4AI score0.01386EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2014/11/03 11:0 p.m.28 views

CVE-2014-0204

OpenStack Identity Keystone before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID...

6.5CVSS7.4AI score0.01386EPSS
Exploits1
RedHat Linux
RedHat Linuxadded 2014/11/03 8:47 a.m.23 views

Important: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring...

4CVSS5.8AI score0.02109EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2014/11/03 8:47 a.m.25 views

Important: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring...

4CVSS5.8AI score0.02109EPSS
Exploits1References7
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.31 views

Moderate: Red Hat Security Advisory: python-keystoneclient security and bug fix update

Updated python-keystoneclient packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

4.3CVSS5.8AI score0.01948EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.29 views

Moderate: Red Hat Security Advisory: python-keystoneclient security and bug fix update

Updated python-keystoneclient packages that fix one security issue and two bugs are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

4.3CVSS5.8AI score0.01948EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.34 views

Moderate: Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update

Updated openstack-neutron packages that fix one security issue, several bugs, and add multiple enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A...

4CVSS5.8AI score0.02089EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.27 views

Moderate: Red Hat Security Advisory: openstack-neutron security, bug fix, and enhancement update

Updated openstack-neutron packages that fix one security issue, several bugs, and add multiple enhancements are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A...

4CVSS5.8AI score0.02089EPSS
Exploits0References19
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.1 views

openstack-neutron: Admin-only network attributes may be reset to defaults by non-privileged users

It was discovered that unprivileged users could in some cases reset admin-only network attributes to their default values. This could lead to unexpected behavior or in some cases result in a denial of service...

4CVSS5.8AI score0.02089EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2014/11/03 8:36 a.m.0 views

Trove: potential leak of passwords into log files

The strutils.maskpassword function in the OpenStack Oslo utility library, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 does not properly mask passwords when logging commands, which allows local users to obtain passwords by reading the log...

2.1CVSS5.8AI score0.00528EPSS
Exploits1References4
Rows per page
Query Builder