Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eucalyptus eucalyptus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5036
The Storage Controller (SC) component in Eucalyptus 3.4.2 up to and including 4.0.x prior to 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs.
Eucalyptus Eucalyptus 3.4.2
Eucalyptus Eucalyptus 3.4.3
Eucalyptus Eucalyptus 4.0.0
NA
CVE-2013-4768
The web services APIs in Eucalyptus 2.0 up to and including 3.4.1 allow remote malicious users to cause a denial of service via vectors related to the "network connection clean up code" and (1) Cloud Controller (CLC), (2) Walrus, (3) Storage Controller (SC), and (4) VMw...
Eucalyptus Eucalyptus 3.3.1
Eucalyptus Eucalyptus 3.2.2
Eucalyptus Eucalyptus 3.3.2
Eucalyptus Eucalyptus 3.3.0
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 3.4.0
Eucalyptus Eucalyptus 3.4.1
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.1.2
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 3.2.1
Eucalyptus Eucalyptus 3.2.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 2.0.1
NA
CVE-2013-4767
Unspecified vulnerability in Eucalyptus prior to 3.3.2 has unknown impact and attack vectors.
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 3.3.0
NA
CVE-2013-4766
The gather log service in Eucalyptus prior to 3.3.1 allows remote malicious users to read log files via an unspecified request to the (1) Cluster Controller (CC) or (2) Node Controller (NC) component.
Eucalyptus Eucalyptus 3.2.2
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.1.2
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 3.2.1
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 3.2.0
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
NA
CVE-2012-4067
Walrus in Eucalyptus prior to 3.2.2 allows remote malicious users to cause a denial of service (memory, thread, and CPU consumption) via a crafted XML message containing a DTD, as demonstrated by a bucket-logging request.
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.1.2
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 3.2.0
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 2.0.1
NA
CVE-2013-2296
Walrus in Eucalyptus prior to 3.2.2 does not verify authorization for the GetBucketLoggingStatus, SetBucketLoggingStatus, and SetBucketVersioningStatus bucket operations, which allows remote authenticated users to bypass intended restrictions on (1) modifying the logging setting,...
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.1.2
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 3.2.0
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 2.0.1
NA
CVE-2013-2297
Eucalyptus EuStore sets a blank root password in the default configuration of EMI 3868652036, EMI 0400376721, EMI 2425352071, and EMI 1347115203, which allows local users to gain privileges via unspecified vectors, a related issue to CVE-2013-2069.
Eucalyptus Eustore Emi 3868652036
Eucalyptus Eustore Emi 2425352071
Eucalyptus Eustore Emi 1347115203
Eucalyptus Eustore Emi 0400376721
NA
CVE-2012-4066
The internal message protocol for Walrus in Eucalyptus 3.2.0 and previous versions does not require signatures for unspecified request headers, which allows malicious users to (1) delete or (2) upload snapshots.
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.0
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 2.0.1
NA
CVE-2012-4064
Eucalyptus prior to 3.1.1 does not properly restrict the binding of external SOAP web-services messages, which allows remote authenticated users to gain privileges by sending a message to (1) Cloud Controller or (2) Walrus with the internal message format and a modified user id.
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 2.0.1
Eucalyptus Eucalyptus
NA
CVE-2012-4063
The Apache Santuario configuration in Eucalyptus prior to 3.1.1 does not properly restrict applying XML Signature transforms to documents, which allows remote malicious users to cause a denial of service via unspecified vectors.
Eucalyptus Eucalyptus 1.1
Eucalyptus Eucalyptus 1.6
Eucalyptus Eucalyptus 3.0.1
Eucalyptus Eucalyptus 1.5.2
Eucalyptus Eucalyptus 1.2
Eucalyptus Eucalyptus 1.5.1
Eucalyptus Eucalyptus 3.1.1
Eucalyptus Eucalyptus 2.0.3
Eucalyptus Eucalyptus 2.0
Eucalyptus Eucalyptus 3.0
Eucalyptus Eucalyptus 1.4
Eucalyptus Eucalyptus 2.0.0
Eucalyptus Eucalyptus 2.0.2
Eucalyptus Eucalyptus 1.0
Eucalyptus Eucalyptus 1.6.2
Eucalyptus Eucalyptus 1.3
Eucalyptus Eucalyptus 2.0.1
Eucalyptus Eucalyptus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »