CPE-B6250A74-528C-43A8-940C-FC1A3021E166 Detail

CPE Details

OpenStack Nova 2015.1.0 Release Candidate 1

Vendor

openstack

Product

nova

Version

2015.1.0

Created

2019-11-01
16h30 +00:00

Modified

2019-11-01
16h30 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:openstack:nova:2015.1.0:rc1::::::

Informations

Vendor

openstack

Product

nova

Version

2015.1.0

Update

rc1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2016-2140	2016-04-12 12h00 +00:00	The libvirt driver in OpenStack Compute (Nova) before 2015.1.4 (kilo) and 12.0.x before 12.0.3 (liberty), when using raw storage and use_cow_images is set to false, allows remote authenticated users to read arbitrary files via a crafted qcow2 header in an ephemeral or root disk.	5.3	Medium
CVE-2015-8749	2016-01-15 18h00 +00:00	The volume_utils._parse_volume_info function in OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty) includes the connection_info dictionary in the StorageError message when using the Xen backend, which might allow attackers to obtain sensitive password information by reading log files or other unspecified vectors.	5.9	Medium
CVE-2015-7548	2016-01-12 18h00 +00:00	OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty), when using libvirt to spawn instances and use_cow_images is set to false, allow remote authenticated users to read arbitrary files by overwriting an instance disk with a crafted image and requesting a snapshot.	3.5	Low
CVE-2015-7713	2015-10-29 19h00 +00:00	OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when the change was made.	5
CVE-2015-3280	2015-10-26 16h00 +00:00	OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.	6.8
CVE-2015-3241	2015-09-08 13h00 +00:00	OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.	6.8

OpenStack Nova 2015.1.0 Release Candidate 1

CPE Details

CPE Name: cpe:2.3:a:openstack:nova:2015.1.0:rc1:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:openstack:nova:2015.1.0:rc1::::::