Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6
CVSSv2

CVE-2011-4596

Published: 23/12/2011 Updated: 16/11/2018
CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8
VMScore: 534
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Subscribe to Openstack

Vulnerability Summary

Multiple directory traversal vulnerabilities in OpenStack Nova prior to 2011.3.1, when the EC2 API and the S3/RegisterImage image-registration method are enabled, allow remote authenticated users to overwrite arbitrary files via a crafted (1) tarball or (2) manifest.

Vulnerable Product Search on Vulmon Subscribe to Product

openstack nova

Vendor Advisories

Ubuntu Security Notice: nova vulnerability
Nova could be made to overwrite files ...

References

CWE-22https://github.com/openstack/nova/commit/76363226bd8533256f7795bba358d7f4b8a6c9e6https://github.com/openstack/nova/commit/ad3241929ea00569c74505ed002208ce360c667ehttps://bugs.launchpad.net/nova/+bug/894755https://lists.launchpad.net/openstack/msg06105.htmlhttps://bugs.launchpad.net/nova/+bug/885167https://usn.ubuntu.com/1305-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook