CVE-2015-1851

OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2 signature in an image to the upload-to-image command.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:C/I:N/A:N

Exploitability : 8.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://lists.openstack.org/pipermail/openstack-announce/2015-June/000367.html	Vendor Advisory
http://rhn.redhat.com/errata/RHSA-2015-1206.html
http://www.debian.org/security/2015/dsa-3292
http://www.openwall.com/lists/oss-security/2015/06/13/1
http://www.openwall.com/lists/oss-security/2015/06/17/2
http://www.openwall.com/lists/oss-security/2015/06/17/7
http://www.ubuntu.com/usn/USN-2703-1
https://bugs.launchpad.net/cinder/+bug/1415087

Configurations

Configuration 1 (hide)

cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:openstack:icehouse::::::::
	cpe:2.3:a:openstack:juno:2014.2:::::::*
	cpe:2.3:a:openstack:juno:2014.2.2:::::::*
	cpe:2.3:a:openstack:juno:2014.2.3:::::::*
	cpe:2.3:a:openstack:kilo:2015.1.0:::::::*

History

No history.

Information

Published : 2015-06-25 16:59

Updated : 2016-12-28 02:59

NVD link : CVE-2015-1851

Mitre link : CVE-2015-1851

CVE.ORG link : CVE-2015-1851

JSON object : View

Products Affected

openstack

icehouse
juno
kilo

canonical

ubuntu_linux

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2015-1851", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-06-25T16:59:00.077", "references": [{"url": "http://lists.openstack.org/pipermail/openstack-announce/2015-June/000367.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-1206.html", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2015/dsa-3292", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2015/06/13/1", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2015/06/17/2", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2015/06/17/7", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-2703-1", "source": "secalert@redhat.com"}, {"url": "https://bugs.launchpad.net/cinder/+bug/1415087", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "OpenStack Cinder before 2014.1.5 (icehouse), 2014.2.x before 2014.2.4 (juno), and 2015.1.x before 2015.1.1 (kilo) allows remote authenticated users to read arbitrary files via a crafted qcow2 signature in an image to the upload-to-image command."}, {"lang": "es", "value": "OpenStack Cinder anterior a 2014.1.5 (icehouse), 2014.2.x anterior a 2014.2.4 (juno), y 2015.1.x anterior a 2015.1.1 (kilo) permite a usuarios remotos autenticados leer ficheros arbitrarios a trav\u00e9s de una firma qcow2 manipulada en una imagen en el comando 'subir a imagen' (upload-to-image)."}], "lastModified": "2016-12-28T02:59:05.183", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F38D3B7E-8429-473F-BB31-FC3583EE5A5B"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openstack:icehouse:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8246EAF1-8E2A-42DA-8999-CDFC8BDBFEAE", "versionEndIncluding": "2014.1.4"}, {"criteria": "cpe:2.3:a:openstack:juno:2014.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B0DC029-EB8B-480E-9CF5-361FE21B9EE8"}, {"criteria": "cpe:2.3:a:openstack:juno:2014.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACDC7402-7A8C-43AF-8978-3AEE8C997E81"}, {"criteria": "cpe:2.3:a:openstack:juno:2014.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5072454B-EECF-4672-B2B3-C356FF3411D2"}, {"criteria": "cpe:2.3:a:openstack:kilo:2015.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F85D61D6-402C-4FED-A5CD-BEDF946EF694"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}