Lucene search
RootSSV:61108HistoryDec 13, 2013 - 12:00 a.m.
OpenStack Compute (Nova) 不安全目录权限漏洞
2013-12-1300:00:00
Root
www.seebug.org
20
0.0004 Low
EPSS
Percentile
5.1%
BUGTRAQ ID: 64266
CVE(CAN) ID: CVE-2013-7048
OpenStack Compute (Nova)是用Python编写的云计算构造控制器,属于laaS系统的一部分。
OpenStack Compute (Nova) Havana、Grizzly在实现上存在不安全目录权限导致的安全漏洞,攻击者可利用此漏洞在受影响目录内执行未授权操作。
0
openstack Nova
厂商补丁:
openstack
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
nessus
nessus
Fedora 20 : openstack-nova-2013.2.2-1.fc20 (2014-2554)
2014-02-26 00:00:00
Fedora 19 : openstack-nova-2013.1.5-1.fc19 (2014-4188)
2014-04-03 00:00:00
ubuntucve
ubuntucve
CVE-2013-7048
2014-01-23 00:00:00
cvelist
cvelist
CVE-2013-7048
2014-01-23 21:00:00
prion
prion
Design/Logic Flaw
2014-01-23 21:55:00
ibm
ibm
debiancve
debiancve
CVE-2013-7048
2014-01-23 21:55:04
cve
cve
CVE-2013-7048
2014-01-23 21:55:04
github
github
OpenStack Nova live snapshots use an insecure local directory
2022-05-14 01:58:45
nvd
nvd
CVE-2013-7048
2014-01-23 21:55:04
redhat
redhat
(RHSA-2014:0366) Moderate: openstack-nova security and bug fix update
2014-04-03 00:00:00
(RHSA-2014:0231) Moderate: openstack-nova security and bug fix update
2014-03-04 00:00:00
openvas
openvas
Fedora Update for openstack-nova FEDORA-2014-2554
2014-02-25 00:00:00
Fedora Update for openstack-nova FEDORA-2014-2554
2014-02-25 00:00:00
Fedora Update for openstack-nova FEDORA-2014-4188
2014-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.2-1.fc20
2014-02-25 07:53:02
[SECURITY] Fedora 19 Update: openstack-nova-2013.1.5-1.fc19
2014-04-02 09:14:29
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:57:31
Infomation Disclosure
2019-05-02 04:57:32
Privilege Escalation
2019-05-02 04:57:32