CVE-2013-4354

Опубликовано: 19 сент. 2013

Источник: redhat

CVSS2: 4

Описание

The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat OpenStack Platform 3	openstack-glance	Affected
Red Hat OpenStack Platform 4	openstack-glance	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1008615OpenStack: Glance image creation in other tenant accounts

4 Medium

CVSS2

Связанные уязвимости

CVE-2013-4354

ubuntu

около 12 лет назад

The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.

CVE-2013-4354

nvd

около 12 лет назад

The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.

CVE-2013-4354

debian

около 12 лет назад

The API before 2.1 in OpenStack Image Registry and Delivery Service (G ...

GHSA-8gm2-7v6h-5cc8

github

больше 3 лет назад

The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.

4 Medium

CVSS2