OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM that was bound to the same VNC port.
Max CVSS
6.0
EPSS Score
0.43%
Published
2013-03-22
Updated
2013-06-05
The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_device_mapping parameter.
Max CVSS
6.5
EPSS Score
0.44%
Published
2013-02-13
Updated
2017-08-29
2 vulnerabilities found