CVE-2013-0208
published 2013-02-13CVE-2013-0208: The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users'…
medium6.5CVSS 3.1
AVNACLAuSCPIPAP
The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_device_mapping parameter.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | nova | < nova 2012.1.1-12 (bookworm) | nova 2012.1.1-12 (bookworm) |
| openstack | nova | >= 0 < 2012.1.1-12 | 2012.1.1-12 |
| openstack | nova | >= 0 < 2012.1.1-12 | 2012.1.1-12 |
| openstack | nova | >= 0 < 2012.1.1-12 | 2012.1.1-12 |
| openstack | nova | >= 0 < 2012.1.1-12 | 2012.1.1-12 |
CVSS provenance
nvd6.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
osv6.5MEDIUM