The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service (resource consumption) by requesting the VM be put into rescue and then deleting the image.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-03-25T15:00:00
Updated: 2024-08-06T10:21:35.993Z
Reserved: 2014-03-21T00:00:00
Link: CVE-2014-2573
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-03-25T16:55:28.677
Modified: 2024-11-21T02:06:33.303
Link: CVE-2014-2573
Redhat