Vulnerabilities > Openstack

DATE	CVE	VULNERABILITY TITLE	RISK
2016-01-13	CVE-2015-8466	Improper Input Validation vulnerability in multiple products Swift3 before 1.9 allows remote attackers to conduct replay attacks via an Authorization request that lacks a Date header. network high complexity fedoraproject openstack CWE-20	7.4
2016-01-12	CVE-2015-7548	Information Exposure vulnerability in Openstack Nova OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty), when using libvirt to spawn instances and use_cow_images is set to false, allow remote authenticated users to read arbitrary files by overwriting an instance disk with a crafted image and requesting a snapshot. network high complexity openstack CWE-200	3.5
2012-10-22	CVE-2012-4406	Deserialization of Untrusted Data vulnerability in multiple products OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object. network low complexity openstack fedoraproject redhat CWE-502 critical	9.8

Vulnerabilities > Openstack {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Openstack"}]}