Skip to main content

Icehouse

4 CVEs product

Monthly

CVE-2015-1851 PyPI MEDIUM PATCH This Month

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Ubuntu Linux Icehouse Juno Kilo
NVD
CVSS 2.0
6.8
EPSS
0.5%
CVE-2014-0162 PyPI MEDIUM PATCH This Month

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Information Disclosure Icehouse Image Registry And Delivery Service Glance
NVD VulDB
CVSS 2.0
6.0
EPSS
0.6%
CVE-2014-0167 PyPI MEDIUM PATCH This Month

The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules,. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Privilege Escalation Compute Icehouse
NVD VulDB
CVSS 2.0
6.0
EPSS
0.4%
CVE-2013-7130 PyPI HIGH PATCH This Week

The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Compute Grizzly Havana Icehouse
NVD
CVSS 2.0
7.1
EPSS
2.5%
EPSS 1% CVSS 6.8
MEDIUM PATCH This Month

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Ubuntu Linux Icehouse +2
NVD
EPSS 1% CVSS 6.0
MEDIUM PATCH This Month

The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2 allows remote authenticated users with permission to insert or. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Information Disclosure Icehouse Image Registry And Delivery Service Glance
NVD VulDB
EPSS 0% CVSS 6.0
MEDIUM PATCH This Month

The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules,. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Privilege Escalation Compute Icehouse
NVD VulDB
EPSS 3% CVSS 7.1
HIGH PATCH This Week

The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Compute Grizzly +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy