Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2012-11-11	CVE-2012-4573	Permissions, Privileges, and Access Controls vulnerability in Openstack products The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482. network low complexity openstack CWE-264	5.5
2012-07-22	CVE-2012-3361	Permissions, Privileges, and Access Controls vulnerability in Openstack Diablo, Essex and Folsom virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image. network low complexity openstack CWE-264	5.5
2012-07-22	CVE-2012-3360	Path Traversal vulnerability in Openstack Essex and Folsom Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files to the disk image via a .. network low complexity openstack CWE-22	5.5