Lucene search
Ubuntu.comUB:CVE-2013-1840HistoryMar 14, 2013 - 12:00 a.m.
CVE-2013-1840
2013-03-1400:00:00
ubuntu.com
ubuntu.com
6
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
70.9%
The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and
Grizzly, when using the single-tenant Swift or S3 store, reports the
location field, which allows remote authenticated users to obtain the
operator’s backend credentials via a request for a cached image.
Bugs
Related
ubuntu
ubuntu
OpenStack Glance vulnerability
2013-03-14 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1764-1)
2013-03-15 00:00:00
Ubuntu Update for glance USN-1764-1
2013-03-15 00:00:00
veracode
veracode
Information Disclosure
2019-01-15 08:51:25
prion
prion
Default credentials
2013-03-22 21:55:00
redhat
redhat
(RHSA-2013:0707) Moderate: openstack-glance security and bug fix update
2013-04-04 00:00:00
cvelist
cvelist
CVE-2013-1840
2013-03-22 21:00:00
nessus
nessus
Ubuntu 12.04 LTS / 12.10 : glance vulnerability (USN-1764-1)
2013-03-15 00:00:00
openSUSE Security Update : openstack (openSUSE-2013-237)
2014-06-13 00:00:00
cve
cve
CVE-2013-1840
2013-03-22 21:55:01
github
github
OpenStack Glance is vulnerable to Exposure of Sensitive Information
2022-05-17 01:36:25
nvd
nvd
CVE-2013-1840
2013-03-22 21:55:01
securityvulns
securityvulns
[USN-1764-1] OpenStack Glance vulnerability
2013-03-19 00:00:00
OpenStack security vulnerabilities
2013-03-24 00:00:00
debiancve
debiancve
CVE-2013-1840
2013-03-22 21:55:01
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
70.9%
Related for UB:CVE-2013-1840