CVE-2015-5286 in Image Registry
요약 (영어)
OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting images that are being uploaded using a token that expires during the process. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-9623.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
예약하다
2015. 07. 01.
공개
2015. 10. 26.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 78195 | OpenStack Image Registry/Delivery Service Storage Quota 권한 상승 | 264 | 입증되지 않음 | 공식 수정 | CVE-2015-5286 |