CVE-2014-0134 in Computeinfo

Summary

The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, allows remote authenticated users to read certain compute host files by overwriting an instance disk with a crafted image.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

12/03/2013

Disclosure

05/08/2014

Moderation

VulDB entry created

Entries

1: VDB-69621

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.3

EPSS

0.00201

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-0134
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-0134
CVE Details	https://www.cvedetails.com/cve/CVE-2014-0134/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!