Every CVE whose affected-product data names Openstack Grizzly, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2013-2161 — CVSS 7.5 (high): XML injection vulnerability in account/utils.py in OpenStack Swift Folsom, Grizzly, and Havana allows attackers to trigger invalid or…
CVE-2013-7130 — CVSS 7.1 (high): The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and…
CVE-2013-4497 — CVSS 6.4 (medium): The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and Havana before 2013.2 does not properly apply security groups (1) when…
CVE-2013-0335 — CVSS 6.0 (medium): OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in…
CVE-2013-1664 — CVSS 5.0 (medium): The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova)…
CVE-2012-5625 — CVSS 4.3 (medium): OpenStack Compute (Nova) Folsom before 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical…
CVE-2013-1838 — CVSS 4.0 (medium): OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) does not properly implement a quota for fixed IPs, which allows…
CVE-2013-4155 — CVSS 4.0 (medium): OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous"…
CVE-2013-4261 — CVSS 3.5 (low): OpenStack Compute (Nova) Folsom, Grizzly, and earlier, when using Apache Qpid for the RPC backend, does not properly handle errors that…
CVE-2013-4477 — CVSS 3.3 (low): The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that…
CVE-2013-2096 — CVSS 2.1 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a…
CVE-2013-4463 — CVSS 2.1 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users…
CVE-2013-2030 — CVSS 2.1 (low): keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing…
CVE-2013-4469 — CVSS 1.9 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2…