CVE-2015-3280

Currently unrated 🤨

Key Information

Vendor: Openstack
Status: Nova
Vendor: CVE Published:; 26 October 2015

Summary

OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.

References

http://rhn.redhat.com/errata/RHSA-2015-1898.html

vendor-advisoryx_refsource_REDHAT

https://launchpad.net/bugs/1392527

x_refsource_CONFIRM

http://www.oracle.com/technetwork/topics/security/bulleti...

x_refsource_CONFIRM

EPSS Score

1% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 26, 2015
Vulnerability Reserved
Apr 10, 2015

Collectors

NVD DatabaseMitre Database