Back to search
CVE-2014-2573
Published: Mar 25, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service (resource consumption) by requesting the VM be put into rescue and then deleting the image.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20140321 Re: CVE request for vulnerability in OpenStack Nova
mailing-list
x_refsource_MLIST
57498
third-party-advisory
x_refsource_SECUNIA
https://bugs.launchpad.net/nova/+bug/1269418
x_refsource_CONFIRM
[oss-security] 20140321 CVE request for vulnerability in OpenStack Nova
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now