The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2012-11-11 05:00
Updated : 2017-08-28 18:32
NVD link : CVE-2012-4573
Mitre link : CVE-2012-4573
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
openstack
- image_registry_and_delivery_service_\(glance\)
- essex
- folsom