Every CVE whose affected-product data names Openstack Compute, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2013-7130 — CVSS 7.1 (high): The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and…
CVE-2014-0167 — CVSS 6.0 (medium): The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not…
CVE-2013-2255 — CVSS 5.9 (medium): HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate…
CVE-2015-2687 — CVSS 4.7 (medium): OpenStack Compute (nova) Icehouse, Juno and Havana when live migration fails allows local users to access VM volumes that they would…
CVE-2012-2654 — CVSS 4.3 (medium): The (1) EC2 and (2) OS APIs in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) do not properly check the…
CVE-2013-4179 — CVSS 4.3 (medium): The security group extension in OpenStack Compute (Nova) Grizzly 2013.1.3, Havana before havana-3, and earlier allows remote attackers to…
CVE-2013-4185 — CVSS 4.0 (medium): Algorithmic complexity vulnerability in OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-3 does not properly handle…
CVE-2013-4278 — CVSS 3.5 (low): The "create an instance" API in OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly enforce the os-flavor-access:is_publi…
CVE-2014-0134 — CVSS 3.5 (low): The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images…
CVE-2012-3371 — CVSS 3.5 (low): The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled…
CVE-2014-2573 — CVSS 2.3 (low): The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote…
CVE-2013-2030 — CVSS 2.1 (low): keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing…