Improper input validation in Eucalyptus

CVE-2013-4768

The web services APIs in Eucalyptus 2.0 through 3.4.1 allow remote attackers to cause a denial of service via vectors related to the "network connection clean up code" and (1) Cloud Controller (CLC), (2) Walrus, (3) Storage Controller (SC)…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.013 (67.2th percentile) — read the EPSS interpretation.

Affected products

  • Eucalyptus — versions 2.0, 2.0.1, 2.0.2
  • N/a — versions n/a

Weakness classification (CWE)

References