CVE Vulnerabilities

CVE-2012-0030

Published: Jan 13, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.9 MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Nova 2011.3 and Essex, when using the OpenStack API, allows remote authenticated users to bypass access restrictions for tenants of other users via an OSAPI request with a modified project_id URI parameter.

Affected Software

Name Vendor Start Version End Version
Essex Openstack * *
Nova Openstack 2011.3 2011.3

References