CVE-2024-40767

Published: Jul 24, 2024

Modified: Nov 4, 2025

PUBLISHED

Description

In OpenStack Nova before 27.4.1, 28 before 28.2.1, and 29 before 29.1.1, by supplying a raw format image that is actually a crafted QCOW2 image with a backing file path or VMDK flat image with a descriptor file path, an authenticated user may convince systems to return a copy of the referenced file's contents from the server, resulting in unauthorized access to potentially sensitive data. All Nova deployments are affected. NOTE: this issue exists because of an incomplete fix for CVE-2022-47951 and CVE-2024-32498.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://launchpad.net/bugs/2071734

https://security.openstack.org

https://www.openwall.com/lists/oss-security/2024/07/23/2

https://security.openstack.org/ossa/OSSA-2024-002.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40767

Description

Affected Products

References