Icehouse Security Vulnerabilities and Issues — Icehouse CVE List

Lucene search

OpenstackIcehouse

3 matches found

CVE•added 2015/06/25 4:59 p.m.•69 views

CVE-2015-1851

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2 signature in an image to the upload-to-image command.

6.8CVSS6AI score0.00489EPSS

CVE•added 2014/04/27 8:55 p.m.•60 views

CVE-2014-0162

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or modify an image to execute arbitrary commands via a crafted location.

6CVSS6.9AI score0.00557EPSS

CVE•added 2014/04/15 2:55 p.m.•59 views

CVE-2014-0167

The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules, (3) destroy, and other unspecified methods in compute/api.py when using non-default policies, which ...

6CVSS6.5AI score0.00383EPSS