CVE-2015-3289
published 2015-08-14CVE-2015-3289: OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption) by repeatedly using the import task…
medium4CVSS 3.1
AVNACLAuSCNINAP
OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption) by repeatedly using the import task flow API to create images and then deleting them.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | glance | < glance 2015.1.0-4 (bookworm) | glance 2015.1.0-4 (bookworm) |
| glance_project | glance | >= 0 < 2015.1.0-4 | 2015.1.0-4 |
| glance_project | glance | >= 0 < 2015.1.0-4 | 2015.1.0-4 |
| glance_project | glance | >= 0 < 2015.1.0-4 | 2015.1.0-4 |
| glance_project | glance | >= 0 < 2015.1.0-4 | 2015.1.0-4 |
| openstack | glance | <= 2015.1.0 | — |
CVSS provenance
nvd4.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM