Vulnerability Details : CVE-2013-4278
The "create an instance" API in OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not properly enforce the os-flavor-access:is_public property, which allows remote authenticated users to boot arbitrary flavors by guessing the flavor id. NOTE: this issue is due to an incomplete fix for CVE-2013-2256.
Exploit prediction scoring system (EPSS) score for CVE-2013-4278
Probability of exploitation activity in the next 30 days: 0.13%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 46 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-4278
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
3.5
|
LOW | AV:N/AC:M/Au:S/C:P/I:N/A:N |
6.8
|
2.9
|
NIST |
CWE ids for CVE-2013-4278
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2013-4278
-
http://lists.openstack.org/pipermail/openstack-announce/2013-August/000138.html
OpenStack Open Source Cloud Computing Software » Message: [openstack-announce] [OSSA 2013-024] Resource limit circumvention in Nova private flavors (CVE-2013-4278)Patch
-
http://rhn.redhat.com/errata/RHSA-2013-1199.html
RHSA-2013:1199 - Security Advisory - Red Hat Customer PortalVendor Advisory
-
https://bugs.launchpad.net/ossa/+bug/1212179
Bug #1212179 “[OSSA 2013-024] nova should check the is_public of...” : Bugs : OpenStack Security Advisory
Products affected by CVE-2013-4278
- cpe:2.3:a:openstack:compute:-:*:*:*:*:*:*:*