QwikSec

Security Database

CVE

CWE

Training

CVE-2023-2088

Published: May 12, 2023

Modified: Nov 4, 2025

PUBLISHED

Description

A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A remote, authenticated attacker could exploit this vulnerability by detaching one of their volumes from Cinder. The highest impact is to confidentiality.

Vendor	Product	Versions
n/a	OpenStack	affected `unknown`

Weaknesses (CWE)

References

https://security.openstack.org/ossa/OSSA-2023-003.html

https://bugs.launchpad.net/bugs/2004555

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.