OpenStack Image Registry and Delivery Service (Glance) 2014.1.4

CPE Details

OpenStack Image Registry and Delivery Service (Glance) 2014.1.4
openstack
image_registry_and_delivery_service_\(glance\)
2014.1.4
2014-08-26
13h49 +00:00
2014-08-26
14h27 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2014.1.4:*:*:*:*:*:*:*

Informations

Vendor

openstack

Product

image_registry_and_delivery_service_\(glance\)

Version

2014.1.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2015-5251 2015-10-26 16h00 +00:00 OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via the HTTP x-image-meta-status header to images/*.
5.5
CVE-2015-5286 2015-10-26 16h00 +00:00 OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting images that are being uploaded using a token that expires during the process. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-9623.
6.8