Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Published: 2014-10-31
Updated: 2019-04-22
Summary
The VMware driver in OpenStack Compute (Nova) before 2014.1.4 allows remote authenticated users to cause a denial of service (disk consumption) by deleting an instance in the resize state.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Redhat
| advisories | |
| rpms | - openstack-nova-0:2014.1.4-3.el7ost
- openstack-nova-api-0:2014.1.4-3.el7ost
- openstack-nova-cells-0:2014.1.4-3.el7ost
- openstack-nova-cert-0:2014.1.4-3.el7ost
- openstack-nova-common-0:2014.1.4-3.el7ost
- openstack-nova-compute-0:2014.1.4-3.el7ost
- openstack-nova-conductor-0:2014.1.4-3.el7ost
- openstack-nova-console-0:2014.1.4-3.el7ost
- openstack-nova-doc-0:2014.1.4-3.el7ost
- openstack-nova-network-0:2014.1.4-3.el7ost
- openstack-nova-novncproxy-0:2014.1.4-3.el7ost
- openstack-nova-objectstore-0:2014.1.4-3.el7ost
- openstack-nova-scheduler-0:2014.1.4-3.el7ost
- openstack-nova-serialproxy-0:2014.1.4-3.el7ost
- python-nova-0:2014.1.4-3.el7ost
- openstack-nova-0:2014.1.4-3.el6ost
- openstack-nova-api-0:2014.1.4-3.el6ost
- openstack-nova-cells-0:2014.1.4-3.el6ost
- openstack-nova-cert-0:2014.1.4-3.el6ost
- openstack-nova-common-0:2014.1.4-3.el6ost
- openstack-nova-compute-0:2014.1.4-3.el6ost
- openstack-nova-conductor-0:2014.1.4-3.el6ost
- openstack-nova-console-0:2014.1.4-3.el6ost
- openstack-nova-doc-0:2014.1.4-3.el6ost
- openstack-nova-network-0:2014.1.4-3.el6ost
- openstack-nova-novncproxy-0:2014.1.4-3.el6ost
- openstack-nova-objectstore-0:2014.1.4-3.el6ost
- openstack-nova-scheduler-0:2014.1.4-3.el6ost
- openstack-nova-serialproxy-0:2014.1.4-3.el6ost
- python-nova-0:2014.1.4-3.el6ost
|