CVE-2016-8611

Опубликовано: 27 окт. 2016

Источник: redhat

CVSS3: 4.3

CVSS2: 3.5

EPSS Низкий

Описание

A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 /images API POST method for authenticated users, resulting in possible denial of service attacks through database table saturation.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)	openstack-glance	Will not fix
Red Hat Enterprise Linux OpenStack Platform 6 (Juno)	openstack-glance	Will not fix
Red Hat Enterprise Linux OpenStack Platform 7 (Kilo)	openstack-glance	Will not fix
Red Hat OpenStack Platform 10 (Newton)	openstack-glance	Will not fix
Red Hat OpenStack Platform 8 (Liberty)	openstack-glance	Will not fix
Red Hat OpenStack Platform 9 (Mitaka)	openstack-glance	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=1387293openstack-glance: Glance Image service v1 and v2 api image-create vulnerability

EPSS

Процентиль: 67%

0.00535

Низкий

4.3 Medium

CVSS3

3.5 Low

CVSS2

Связанные уязвимости

CVE-2016-8611

CVSS3: 4.3

ubuntu

больше 7 лет назад

A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denial of service attacks through database table saturation.

CVE-2016-8611

CVSS3: 4.3

nvd

больше 7 лет назад

CVE-2016-8611

CVSS3: 4.3

debian

больше 7 лет назад

A vulnerability was found in Openstack Glance. No limits are enforced ...

GHSA-c8qm-3x9v-xjgr

CVSS3: 6.5

github

больше 3 лет назад

EPSS

Процентиль: 67%

0.00535

Низкий

4.3 Medium

CVSS3

3.5 Low

CVSS2