Lucene search
+L
OpenstackImage Registry And Delivery Service (glance)

6 matches found

cve
cve
added 2016/04/13 5:0 p.m.92 views

CVE-2016-0757

OpenStack Image Service (Glance) vulnerable CVE-2016-0757 affects 11.0.x before 11.0.2 (liberty) and 2015.1.3 (kilo) when show_multiple_locations is enabled. The issue allows a remote authenticated attacker to change image status and upload new image data by removing the last location of an image...

4.3CVSS4.1AI score0.01466EPSS
cve
cve
added 2013/02/24 9:0 p.m.91 views

CVE-2013-0212

The CVE-2013-0212 issue affects OpenStack Glance (Essex/Folsom/Grizzly) in Swift single-tenant mode, where store/swift.py logs the Swift endpoint user name and password in cleartext in error messages when the endpoint is misconfigured or unusable. This allows a remote authenticated user to read s...

4CVSS5.8AI score0.02965EPSS
cve
cve
added 2014/08/25 2:0 p.m.85 views

CVE-2014-5356

The CVE-2014-5356 vulnerability affects OpenStack Image Registry and Delivery Service (Glance) prior to 2013.2.4, 2014.x prior to 2014.1.3, and Juno prior to Juno-3 when using the V2 API. The root cause is that the image_size_cap option was not honored, allowing an authenticated remote user to up...

4CVSS6.1AI score0.02127EPSS
cve
cve
added 2015/01/23 3:0 p.m.84 views

CVE-2014-9623

OpenStack Glance (Image Service) CVE-2014-9623 affects 2014.2.x through 2014.2.1, 2014.1.3 and earlier, allowing remote authenticated users to bypass storage quota and cause disk DoS by deleting an image in the saving state. Root cause is an incomplete fix that permitted quota bypass during uploa...

4CVSS6.1AI score0.02844EPSS
cve
cve
added 2015/02/24 3:0 p.m.74 views

CVE-2014-9684

CVE-2014-9684 affects OpenStack Glance (Image Registry and Delivery Service) versions 2014.2 through 2014.2.2. The vulnerability arises because the image removal process does not properly clean up, allowing a remote authenticated user to cause a denial of service (disk consumption) by rapidly cre...

4CVSS6.1AI score0.01981EPSS
cve
cve
added 2015/02/24 3:0 p.m.57 views

CVE-2015-1881

The CVE-2015-1881 entry concerns OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2, where images are not properly removed. According to connected docs, this allows remote authenticated users to trigger a denial of service (disk consumption) by creating a large number ...

4CVSS6.1AI score0.02101EPSS