Описание
The import task action in OpenStack Image Service (Glance) 2015.1.x before 2015.1.2 (kilo), when using the V2 API, allows remote authenticated users to read arbitrary files via a crafted backing file for a qcow2 image.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2:11.0.0-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [code not present]] |
| precise | not-affected | code not present |
| trusty | not-affected | code not present |
| trusty/esm | DNE | trusty was not-affected [code not present] |
| upstream | released | 2015.1.2 |
| vivid | not-affected | 1:2015.1.2-0ubuntu1 |
| wily | not-affected | 2:11.0.0-0ubuntu1 |
Показывать по
3.5 Low
CVSS2
Связанные уязвимости
The import task action in OpenStack Image Service (Glance) 2015.1.x before 2015.1.2 (kilo), when using the V2 API, allows remote authenticated users to read arbitrary files via a crafted backing file for a qcow2 image.
The import task action in OpenStack Image Service (Glance) 2015.1.x before 2015.1.2 (kilo), when using the V2 API, allows remote authenticated users to read arbitrary files via a crafted backing file for a qcow2 image.
The import task action in OpenStack Image Service (Glance) 2015.1.x be ...
OpenStack Image Service (Glance) allows remote authenticated users to read arbitrary file
3.5 Low
CVSS2