CVE-2014-8333

CWE-399CWE-7728 documents7 sources
Severity
4.0MEDIUM
EPSS
0.7%
top 27.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Openstack NovaRedhat Openstack
Timeline
PublishedOct 31
Latest updateMay 14

Description

The VMware driver in OpenStack Compute (Nova) before 2014.1.4 allows remote authenticated users to cause a denial of service (disk consumption) by deleting an instance in the resize state.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages4 packages

NVDopenstack/nova2014.12014.1.4
PyPInova< 12.0.0a0
Debiannova< 2014.1.3-7+3

Patches

Patch: lists.openstack.orgPatch: lists.openstack.org

🔴Vulnerability Details

4
OSV
OpenStack Nova VMware instance leak potentially leading to compute DoS2022-05-14
GHSA
OpenStack Nova VMware instance leak potentially leading to compute DoS2022-05-14
CVEList
CVE-2014-8333: The VMware driver in OpenStack Compute (Nova) before 20142014-10-31
OSV
CVE-2014-8333: The VMware driver in OpenStack Compute (Nova) before 20142014-10-31

📋Vendor Advisories

2
Red Hat
openstack-nova: Nova VMware instance in resize state may leak2014-08-20
Debian
CVE-2014-8333: nova - The VMware driver in OpenStack Compute (Nova) before 2014.1.4 allows remote auth...2014

💬Community

1
Bugzilla
CVE-2014-8333 openstack-nova: Nova VMware instance in resize state may leak2014-10-21
CVE-2014-8333 (MEDIUM CVSS 4) | The VMware driver in OpenStack Comp | cvebase.io