Security Advisory

CVE-2013-4428

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-10-27 00:00:00

Last updated 2024-08-06 16:45:14

Assigner redhat

State PUBLISHED

Description

OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the download_image policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image UUID.

← Browse all CVEs View on cve.org ↗