NVD

Id
36681  
Name
CVE-2013-0335  
Description
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM that was bound to the same VNC port.  
Reject
 
CVSS Version
2  
CVSS Score
6  
Severity
Medium  
CVSS Base Score
6  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2013-03-22  
Modified Date
2013-06-04  
Seq
2013-0335  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
187465 36681 CVE-2013-0335 RHSA-2013:0709  View
187466 36681 CVE-2013-0335 [oss-security] 20130226 [OSSA-2013-006] VNC proxy can connect to the wrong VM (CVE-2013-0335)  View
187467 36681 CVE-2013-0335 USN-1771-1  View
187468 36681 CVE-2013-0335 https://bugs.launchpad.net/nova/+bug/1125378  View
187469 36681 CVE-2013-0335 https://review.openstack.org/#/c/22086/  View
187470 36681 CVE-2013-0335 https://review.openstack.org/#/c/22758  View
187471 36681 CVE-2013-0335 https://review.openstack.org/#/c/22872/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20434 JVNDB-2013-002009 複数の OpenStack 製品における VM へのアクセス権を取得される脆弱性 OpenStack Compute (Nova) Grizzly、Folsom、および Essex には、VM へのアクセス権を取得される脆弱性が存在します。 CVE-2013-0335 60277 CVE-2013-0335 36681 6 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-002009.html 2013-02-16 2013-06-12 View