CVE-2012-5625 in Grizzlyinfo

Summary

OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which allows attackers to obtain sensitive information by reading the memory of the previous logical volume (LV).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

10/24/2012

Disclosure

12/26/2012

Moderation

VulDB entry created

Entries

1: VDB-63261

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.3

EPSS

0.01057

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5625
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5625
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5625/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!