GCVE - cpe:2.3:a:openstack:compute:2012.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:openstack:compute:2012.2:*:*:*:*:*:*:*

part: a version: 2012.2 update: *

Vendor	Openstack (`7b0cf974-b2b5-592e-bdf4-6953805ef02a`)
Product	Compute (`8976b317-32c2-5dce-aa28-7b7e42d27d27`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:gem/openstack-compute`	purl2cpe	2026-06-01 10:17:02.967998
`pkg:rpm/opensuse/perl-net-openstack-compute`	purl2cpe	2026-06-01 10:17:02.967999

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2013-7130`	vulnerable	2026-06-03 14:33:34.064179	Details available The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not properly create all expected files, which allows attackers to obtain snapshot root disk contents of other users via ephemeral storage. Published: 2014-02-06T16:00:00.000Z Updated: 2024-08-06T18:01:19.335Z Open on db.gcve.eu Reference links https://review.openstack.org/#/c/68659/ https://review.openstack.org/#/c/68658/ http://www.securityfocus.com/bid/65106 https://review.openstack.org/#/c/68660/ https://exchange.xforce.ibmcloud.com/vulnerabilities/90652	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3371`	vulnerable	2026-06-03 14:31:57.892603	Details available The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service (excessive database lookup calls and server hang) via a request with many repeated IDs in the os:scheduler_hints section. Published: 2012-07-17T21:00:00.000Z Updated: 2024-08-06T20:05:12.113Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/54388 https://lists.launchpad.net/openstack/msg14452.html https://bugs.launchpad.net/nova/+bug/1017795 http://www.openwall.com/lists/oss-security/2012/07/11/13 http://www.ubuntu.com/usn/USN-1501-1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-2654`	vulnerable	2026-06-03 14:31:53.960071	Details available The (1) EC2 and (2) OS APIs in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) do not properly check the protocol when security groups are created and the network protocol is not specified entirely in lowercase, which allows remote attackers to bypass intended access restrictions. Published: 2012-06-21T15:00:00.000Z Updated: 2024-08-06T19:42:31.878Z Open on db.gcve.eu Reference links http://secunia.com/advisories/46808 https://review.openstack.org/#/c/8239/ https://github.com/openstack/nova/commit/9f9e9da777161426a6f8cb4314b78e09beac2978 https://bugs.launchpad.net/nova/+bug/985184 https://github.com/openstack/nova/commit/ff06c7c885dc94ed7c828e8cdbb8b5d850a7e654	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.