Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openstack nova vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-7214
An issue exists in exception_wrapper.py in OpenStack Nova 13.x up to and including 13.1.3, 14.x up to and including 14.0.4, and 15.x up to and including 15.0.1. Legacy notification exception contexts appearing in ERROR level logs may include sensitive information such as account ...
Openstack Nova 15.0.0
Openstack Nova 15.0.1
Openstack Nova 13.1.2
Openstack Nova 13.1.1
Openstack Nova 14.0.3
Openstack Nova 14.0.4
Openstack Nova 14.0.0
Openstack Nova 13.1.3
Openstack Nova 14.0.1
Openstack Nova 14.0.2
Openstack Nova 13.1.0
Openstack Nova 13.0.0
312
VMScore
CVE-2012-2101
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number...
Openstack Nova Folsom
Openstack Nova 2012.1
Openstack Nova 2011.3
578
VMScore
CVE-2020-17376
An issue exists in Guest.migrate in virt/libvirt/guest.py in OpenStack Nova prior to 19.3.1, 20.x prior to 20.3.1, and 21.0.0. By performing a soft reboot of an instance that has previously undergone live migration, a user may gain access to destination host devices that share th...
Openstack Nova
Openstack Nova 21.0.0
578
VMScore
CVE-2014-8750
Race condition in the VMware driver in OpenStack Compute (Nova) prior to 2014.1.4 and 2014.2 prior to 2014.2rc1 allows remote authenticated users to access unintended consoles by spawning an instance that triggers the same VNC port to be allocated to two different instances.
Openstack Nova
Openstack Nova 2014.2
446
VMScore
CVE-2013-1664
The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote malicious users to cause a denial of service (resource consump...
Openstack Cinder Folsom -
Openstack Keystone Essex -
Openstack Folsom -
Openstack Grizzly -
Openstack Compute \\(nova\\) Essex -
Openstack Compute \\(nova\\) Folsom -
436
VMScore
CVE-2012-0030
Nova 2011.3 and Essex, when using the OpenStack API, allows remote authenticated users to bypass access restrictions for tenants of other users via an OSAPI request with a modified project_id URI parameter.
Openstack Essex
Openstack Nova 2011.3
436
VMScore
CVE-2012-3447
virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x prior to 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability...
Openstack Nova 2012.1
Openstack Folsom
187
VMScore
CVE-2014-7231
The strutils.mask_password function in the OpenStack Oslo utility library, Cinder, Nova, and Trove prior to 2013.2.4 and 2014.1 prior to 2014.1.3 does not properly mask passwords when logging commands, which allows local users to obtain passwords by reading the log.
Openstack Cinder
Openstack Nova
Openstack Trove
Redhat Openstack 5.0
445
VMScore
CVE-2011-3147
Versions of nova prior to 2012.1 could expose hypervisor host files to a guest operating system when processing a maliciously constructed qcow filesystem.
Openstack Nova
534
VMScore
CVE-2011-4596
Multiple directory traversal vulnerabilities in OpenStack Nova prior to 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest.
Openstack Nova
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »