Image Registry And Delivery Service (glance)@2013.2 Security Vulnerabilities and Issues — Image Registry And Delivery Service (glance)@2013.2 CVE List

Lucene search

OpenstackImage Registry And Delivery Service (glance)2013.2

3 matches found

CVE•added 2014/04/27 8:55 p.m.•60 views

CVE-2014-0162

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or modify an image to execute arbitrary commands via a crafted location.

6CVSS6.9AI score0.00557EPSS

CVE•added 2014/08/25 2:55 p.m.•55 views

CVE-2014-5356

OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2 API, does not properly enforce the image_size_cap configuration option, which allows remote authenticated users to cause a denial of service (disk consumption) b...

4CVSS6.1AI score0.00759EPSS

CVE•added 2014/02/14 3:55 p.m.•49 views

CVE-2014-1948

OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the Swift store backend password when authentication fails and WARNING level logging is enabled, which allows local users to obtain sensitive information by reading th...

2.6CVSS6AI score0.00062EPSS