Every CVE whose affected-product data names Openstack Havana, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2013-2161 — CVSS 7.5 (high): XML injection vulnerability in account/utils.py in OpenStack Swift Folsom, Grizzly, and Havana allows attackers to trigger invalid or…
CVE-2013-7130 — CVSS 7.1 (high): The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and…
CVE-2013-4497 — CVSS 6.4 (medium): The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and Havana before 2013.2 does not properly apply security groups (1) when…
CVE-2013-6419 — CVSS 5.0 (medium): Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1 and icehouse-1 does not validate the instance ID of the tenant…
CVE-2013-4179 — CVSS 4.3 (medium): The security group extension in OpenStack Compute (Nova) Grizzly 2013.1.3, Havana before havana-3, and earlier allows remote attackers to…
CVE-2013-4155 — CVSS 4.0 (medium): OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous"…
CVE-2013-4477 — CVSS 3.3 (low): The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that…
CVE-2013-4463 — CVSS 2.1 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly verify the virtual size of a QCOW2 image, which allows local users…
CVE-2013-2096 — CVSS 2.1 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a…
CVE-2013-2030 — CVSS 2.1 (low): keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing…
CVE-2013-4469 — CVSS 1.9 (low): OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2…