Vulnerability in Openstack Image_registry_and_delivery_service_\(glance\)
CVE-2015-1881
OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote authenticated users to cause a denial of service (disk consumption) by creating a large number of images us…
EPSS: 0.006 (69.3th percentile) — read the EPSS interpretation.
Affected products
- Openstack Image_registry_and_delivery_service_\(glance\) — versions 2014.2, 2014.2.1, 2014.2.2
- N/a — versions n/a
Weakness classification (CWE)
References
- [openstack-announce] 20150223 [OSSA 2015-004] Glance import task leaks image in backend (CVE-2014-9684, CVE-2015-1881) (Vendor Advisory, mailing-list, x_refsource_MLIST)
- RHSA-2015:0938 (x_refsource_REDHAT, vendor-advisory)
- cve@mitre.org (x_refsource_CONFIRM, Exploit)
- 72694 (vdb-entry, x_refsource_BID)