Описание
Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2011.3 (включая) до 2011.3.1 (исключая)
cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00541
Низкий
6 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
ubuntu
около 14 лет назад
Multiple directory traversal vulnerabilities in OpenStack Nova before 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest.
debian
около 14 лет назад
Multiple directory traversal vulnerabilities in OpenStack Nova before ...
github
больше 3 лет назад
OpenStack Nova Multiple directory traversal vulnerabilities
EPSS
Процентиль: 67%
0.00541
Низкий
6 Medium
CVSS2
Дефекты
CWE-22