Image Registry And Delivery Service (Glance)
Approved changes feed: RSS · Atom
cpe:2.3:a:openstack:image_registry_and_delivery_service_\(glance\):2015.1.1:*:*:*:*:*:*:*
part: a version: 2015.1.1 update: *
| Vendor | Openstack (7b0cf974-b2b5-592e-bdf4-6953805ef02a) |
|---|---|
| Product | Image Registry And Delivery Service (Glance) (08075d3f-d82e-57df-aa20-c356b48bf240) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-5286 |
vulnerable | 2026-06-03 14:34:59.126079 |
Details available
OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumption) by deleting images that are being uploaded using a token that expires during the process. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-9623.
Published: 2015-10-26T17:00:00.000Z
Updated: 2024-08-06T06:41:09.339Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-5251 |
vulnerable | 2026-06-03 14:34:59.021295 |
Details available
OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via the HTTP x-image-meta-status header to images/*.
Published: 2015-10-26T17:00:00.000Z
Updated: 2024-08-06T06:41:08.976Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.