← back
CVE-2013-4354

CVE-2013-4354

EPSS 0.3%
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.launchpad.net/glance/+bug/1226078http://www.openwall.com/lists/oss-security/2013/09/19/2http://www.openwall.com/lists/oss-security/2013/09/19/3