OpenStack Image Registry and Delivery Service (Glance) 2013.2.4

CPE Details

OpenStack Image Registry and Delivery Service (Glance) 2013.2.4
openstack
image_registry_and_delivery_service_\(glance\)
2013.2.4
2014-04-28
15h58 +00:00
2014-04-29
17h55 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2013.2.4:*:*:*:*:*:*:*

Informations

Vendor

openstack

Product

image_registry_and_delivery_service_\(glance\)

Version

2013.2.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2015-5251 2015-10-26 16h00 +00:00 OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via the HTTP x-image-meta-status header to images/*.
5.5
CVE-2015-5286 2015-10-26 16h00 +00:00 OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting images that are being uploaded using a token that expires during the process. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-9623.
6.8
CVE-2014-9623 2015-01-23 14h00 +00:00 OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting an image in the saving state.
4