Image Registry And Delivery Service (glance) Security Vulnerabilities and Issues — Image Registry And Delivery Service (glance) CVE List

Lucene search

OpenstackImage Registry And Delivery Service (glance)

3 matches found

CVE•added 2014/04/27 8:55 p.m.•60 views

CVE-2014-0162

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or modify an image to execute arbitrary commands via a crafted location.

6CVSS6.9AI score0.00557EPSS

CVE•added 2015/10/26 5:59 p.m.•57 views

CVE-2015-5286

OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting images that are being uploaded using a token that expires during the process. NOTE: ...

6.8CVSS4.4AI score0.01006EPSS

CVE•added 2015/01/21 6:59 p.m.•49 views

CVE-2015-1195

The V2 API in OpenStack Image Registry and Delivery Service (Glance) before 2014.1.4 and 2014.2.x before 2014.2.2 allows remote authenticated users to read or delete arbitrary files via a full pathname in a filesystem: URL in the image location property. NOTE: this vulnerability exists because of a...

6.5CVSS6.3AI score0.01447EPSS