2 matches found
CVE-2014-1948
CVE-2014-1948 affects OpenStack Image Registry and Delivery Service (Glance) versions 2013.2 through 2013.2.1 and Icehouse era before icehouse-2, where a failed authentication with WARNING-level logging enables local users to read a log entry containing the Swift store backend password. The vulne...
CVE-2013-4354
The CVE-2013-4354 entry concerns OpenStack Image Registry and Delivery Service (Glance) before version 2.1. The vulnerability arises from the API allowing a local user to add the tenant as a member of an image, enabling injection of images into arbitrary tenants. Affected component is the Glance ...