Vulnerability in Eucalyptus

CVE-2012-4065

Eucalyptus before 3.1.1 does not properly restrict the binding of external SOAP web-services messages, which allows remote authenticated users to bypass unspecified authorization checks and obtain direct access to a (1) Cloud Controller or…

EPSS: 0.010 (57.7th percentile) — read the EPSS interpretation.

Affected products

  • Eucalyptus — versions 1.0, 1.1, 1.2
  • N/a — versions n/a

Weakness classification (CWE)

References