Vulnerabilities > CVE-2015-3289 - Resource Management Errors vulnerability in Openstack Glance
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption) by repeatedly using the import task flow API to create images and then deleting them.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://lists.openstack.org/pipermail/openstack-announce/2015-July/000481.html
- http://lists.openstack.org/pipermail/openstack-announce/2015-July/000481.html
- http://www.securityfocus.com/bid/76068
- http://www.securityfocus.com/bid/76068
- https://bugs.launchpad.net/glance/+bug/1454087
- https://bugs.launchpad.net/glance/+bug/1454087