The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4573.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openstack image registry and delivery service \\(glance\\) - |
||
openstack folsom 2012.2 |
||
openstack essex 2012.1 |