CVE-2012-5482

Currently unrated

Key Information:

Vendor: Openstack
Status: Image Registry And Delivery Service \(glance\); Essex; Folsom
Vendor: CVE Published:; 11 November 2012

Summary

The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-4573.

References

http://secunia.com/advisories/51174

third-party-advisoryx_refsource_SECUNIA

https://github.com/openstack/glance/commit/b591304b8980d8...

x_refsource_CONFIRM

http://www.openwall.com/lists/oss-security/2012/11/08/2

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Nov 11, 2012
Vulnerability Reserved
Oct 24, 2012