| Max CVSS | 6.0 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-4179 | 4.3 |
The security group extension in OpenStack Compute (Nova) Grizzly 2013.1.3, Havana before havana-3, and earlier allows remote attackers to cause a denial of service (resource consumption and crash) via an XML Entity Expansion (XEE) attack. NOTE: this
|
13-02-2023 - 04:45 | 16-09-2013 - 19:14 | |
| CVE-2013-4278 | 3.5 |
The "create an instance" API in OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly enforce the os-flavor-access:is_public property, which allows remote authenticated users to boot arbitrary flavors by guessing the flavor id. NOTE:
|
13-02-2023 - 04:45 | 16-09-2013 - 19:14 | |
| CVE-2013-2256 | 6.0 |
OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-2 does not properly enforce the os-flavor-access:is_public property, which allows remote authenticated users to obtain sensitive information (flavor properties), boot arbitrary flavors
|
13-02-2023 - 00:28 | 16-09-2013 - 19:14 | |
| CVE-2013-4185 | 4.0 |
Algorithmic complexity vulnerability in OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service (n
|
15-11-2018 - 18:34 | 29-10-2013 - 22:55 | |
| CVE-2013-4261 | 3.5 |
OpenStack Compute (Nova) Folsom, Grizzly, and earlier, when using Apache Qpid for the RPC backend, does not properly handle errors that occur during messaging, which allows remote attackers to cause a denial of service (connection pool consumption),
|
30-10-2013 - 13:53 | 29-10-2013 - 22:55 |