The XenAPI backend in OpenStack Compute (Nova) Folsom, Grizzly, and Havana before 2013.2 does not properly apply security groups (1) when resizing an image or (2) during live migration, which allows remote attackers to bypass intended restrictions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2013-11-05T20:00:00Z
Updated: 2024-08-06T16:45:14.926Z
Reserved: 2013-06-12T00:00:00Z
Link: CVE-2013-4497
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-11-05T20:55:29.633
Modified: 2024-11-21T01:55:41.200
Link: CVE-2013-4497
Redhat