Openstack

Diablo

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2012-3361

Exploit
  • EPSS 1.38%
  • Published 22.07.2012 16:55:48
  • Last modified 11.04.2025 00:51:21

virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image.

4.3

CVE-2012-2654

Exploit
  • EPSS 1.18%
  • Published 21.06.2012 15:55:12
  • Last modified 11.04.2025 00:51:21

The (1) EC2 and (2) OS APIs in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) do not properly check the protocol when security groups are created and the network protocol is not specified entirely in lowercase, which al...