CVE-2013-7048

Sažetak

OpenStack Compute (Nova) Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots.

Reference

http://rhn.redhat.com/errata/RHSA-2014-0231.html
http://www.openwall.com/lists/oss-security/2014/01/13/2
https://bugs.launchpad.net/nova/+bug/1227027

CVSS

Base:	3.3
Impact:	4.9
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:L/AC:M/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

16-11-2018 - 14:57

Objavljeno

23-01-2014 - 21:55