Openstack Image Registry And Delivery Service (glance) — known CVE vulnerabilities
Every CVE whose affected-product data names Openstack Image Registry And Delivery Service (glance), ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2015-5286 — CVSS 6.8 (medium): OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the…
CVE-2015-1195 — CVSS 6.5 (medium): The V2 API in OpenStack Image Registry and Delivery Service (Glance) before 2014.1.4 and 2014.2.x before 2014.2.2 allows remote…
CVE-2014-0162 — CVSS 6.0 (medium): The Sheepdog backend in OpenStack Image Registry and Delivery Service (Glance) 2013.2 before 2013.2.4 and icehouse before icehouse-rc2…
CVE-2012-4573 — CVSS 5.5 (medium): The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary…
CVE-2012-5482 — CVSS 5.5 (medium): The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary…
CVE-2014-9493 — CVSS 5.5 (medium): The V2 API in OpenStack Image Registry and Delivery Service (Glance) before 2014.2.2 and 2014.1.4 allows remote authenticated users to read…
CVE-2015-5251 — CVSS 5.5 (medium): OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the…
CVE-2016-0757 — CVSS 4.3 (medium): OpenStack Image Service (Glance) before 2015.1.3 (kilo) and 11.0.x before 11.0.2 (liberty), when show_multiple_locations is enabled, allow…
CVE-2014-9623 — CVSS 4.0 (medium): OpenStack Glance 2014.2.x through 2014.2.1, 2014.1.3, and earlier allows remote authenticated users to bypass the storage quota and cause a…
CVE-2014-9684 — CVSS 4.0 (medium): OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote…
CVE-2015-1881 — CVSS 4.0 (medium): OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote…
CVE-2014-5356 — CVSS 4.0 (medium): OpenStack Image Registry and Delivery Service (Glance) before 2013.2.4, 2014.x before 2014.1.3, and Juno before Juno-3, when using the V2…
CVE-2013-0212 — CVSS 4.0 (medium): store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the…
CVE-2014-1948 — CVSS 2.6 (low): OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the…
CVE-2013-4354 — CVSS 2.1 (low): The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into…