Lucene search
RootSSV:62201HistoryApr 16, 2014 - 12:00 a.m.
OpenStack Nova RBAC安全绕过漏洞
2014-04-1600:00:00
Root
www.seebug.org
22
0.003 Low
EPSS
Percentile
63.9%
Bugtraq ID:65753
CVE ID:CVE-2014-0167
OpenStack是由Rackspace和NASA共同开发的云计算平台,帮助服务商和企业内部实现类似于Amazon EC2和S3的云基础架构。OpenStack Nova提供虚拟计算服务。
OpenStack Nova EC2 API安全组实现存在安全漏洞,如add_rules, remove_rules 和destroy方法,受限用户可使用EC2 API绕过限制对安全组进行未授权操作。
0
OpenStack Nova 2013.1 - 2013.2.3
用户可参考如下厂商提供的安全补丁以修复该漏洞:
https://review.openstack.org/86358
https://review.openstack.org/86360
https://review.openstack.org/86361
Related
prion
prion
Design/Logic Flaw
2014-04-15 14:55:00
github
github
nessus
nessus
Fedora 20 : openstack-nova-2013.2.3-2.fc20 (2014-7954)
2014-07-14 00:00:00
Ubuntu 14.04 LTS : OpenStack Nova vulnerabilities (USN-2247-1)
2014-06-18 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 08:59:30
debiancve
debiancve
CVE-2014-0167
2014-04-15 14:55:00
ubuntucve
ubuntucve
CVE-2014-0167
2014-04-15 00:00:00
osv
osv
cve
cve
CVE-2014-0167
2014-04-15 14:55:00
redhat
redhat
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-nova-2013.2.3-2.fc20
2014-07-12 02:22:30
openvas
openvas
Fedora Update for openstack-nova FEDORA-2014-7954
2014-07-15 00:00:00
Ubuntu: Security Advisory (USN-2247-1)
2014-06-23 00:00:00
securityvulns
securityvulns
[USN-2247-1] OpenStack Nova vulnerabilities
2014-06-19 00:00:00
OpenStack multiple security vulnerabilities
2014-06-19 00:00:00
ubuntu
ubuntu
OpenStack Nova vulnerabilities
2014-06-17 00:00:00