CVE-2013-4428 (glance, ubuntu_linux)
-
OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the download_image policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image UUID.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4428
© Lightnetics 2024