A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive information between tenants.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2018-08-27T17:00:00
Updated: 2024-08-05T19:50:16.404Z
Reserved: 2017-10-08T00:00:00
Link: CVE-2017-15139
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-08-27T17:29:00.217
Modified: 2024-11-21T03:14:08.970
Link: CVE-2017-15139
Redhat