Skip to main content

Libcloud

2 CVEs product

Monthly

CVE-2013-6480 PyPI LOW POC PATCH Monitor

Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Libcloud
NVD GitHub Exploit-DB
CVSS 2.0
2.1
EPSS
0.6%
CVE-2012-3446 PyPI MEDIUM POC PATCH This Month

Apache Libcloud before 0.11.1 uses an incorrect regular expression during verification of whether the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Apache Information Disclosure Libcloud
NVD
CVSS 3.1
5.9
EPSS
0.3%
EPSS 1% CVSS 2.1
LOW POC PATCH Monitor

Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Libcloud
NVD GitHub Exploit-DB
EPSS 0% CVSS 5.9
MEDIUM POC PATCH This Month

Apache Libcloud before 0.11.1 uses an incorrect regular expression during verification of whether the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Apache Information Disclosure Libcloud
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy