Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-0259

Опубликовано: 01 апр. 2015
Источник: debian

Описание

OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
novafixed2014.1.3-11package
novanot-affectedwheezypackage

Связанные уязвимости

ubuntu логотип

CVE-2015-0259

ubuntu
почти 11 лет назад

OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.

redhat логотип

CVE-2015-0259

redhat
почти 11 лет назад

OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.

nvd логотип

CVE-2015-0259

nvd
почти 11 лет назад

OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authentication of users for access to consoles via a crafted webpage.

suse-cvrf логотип

SUSE-SU-2015:1666-1

suse-cvrf
больше 10 лет назад

Security update for Cloud Compute 12

github логотип

GHSA-x8xr-rm9r-7mvf

github
больше 3 лет назад

OpenStack Compute (Nova) has Insufficient Verification of Data Authenticity