GCVE - cpe:2.3:a:openstack:compute:2013.2.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:openstack:compute:2013.2.2:*:*:*:*:*:*:*

part: a version: 2013.2.2 update: *

Vendor	Openstack (`7b0cf974-b2b5-592e-bdf4-6953805ef02a`)
Product	Compute (`8976b317-32c2-5dce-aa28-7b7e42d27d27`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:gem/openstack-compute`	purl2cpe	2026-06-01 10:17:02.968017
`pkg:rpm/opensuse/perl-net-openstack-compute`	purl2cpe	2026-06-01 10:17:02.968018

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-2687`	vulnerable	2026-06-03 14:34:47.561465	Details available OpenStack Compute (nova) Icehouse, Juno and Havana when live migration fails allows local users to access VM volumes that they would normally not have permissions for. Published: 2017-08-09T18:00:00.000Z Updated: 2024-08-06T05:24:38.281Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2015/03/24/10 https://review.openstack.org/#/c/338929/ http://www.securityfocus.com/bid/77505 https://bugs.launchpad.net/nova/+bug/1419577 https://bugzilla.redhat.com/show_bug.cgi?id=1205313	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-2573`	vulnerable	2026-06-03 14:33:51.301318	Details available The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denial of service (resource consumption) by requesting the VM be put into rescue and then deleting the image. Published: 2014-03-25T15:00:00.000Z Updated: 2024-08-06T10:21:35.993Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2014/03/21/2 http://secunia.com/advisories/57498 https://bugs.launchpad.net/nova/+bug/1269418 http://www.openwall.com/lists/oss-security/2014/03/21/1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-0167`	vulnerable	2026-06-03 14:33:37.331489	Details available The Nova EC2 API security group implementation in OpenStack Compute (Nova) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 does not enforce RBAC policies for (1) add_rules, (2) remove_rules, (3) destroy, and other unspecified methods in compute/api.py when using non-default policies, which allows remote authenticated users to gain privileges via these API requests. Published: 2014-04-15T14:00:00.000Z Updated: 2024-08-06T09:05:38.956Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2014/04/09/26 https://launchpad.net/bugs/1290537 http://www.ubuntu.com/usn/USN-2247-1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-0134`	vulnerable	2026-06-03 14:33:37.091279	Details available The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, allows remote authenticated users to read certain compute host files by overwriting an instance disk with a crafted image. Published: 2014-05-08T14:00:00.000Z Updated: 2024-08-06T09:05:38.800Z Open on db.gcve.eu Reference links https://bugs.launchpad.net/nova/+bug/1221190 http://www.openwall.com/lists/oss-security/2014/03/27/6 http://www.ubuntu.com/usn/USN-2247-1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.