Gabe Westmaas

Pesquisador deRackspace

#45869de 53,638

5.5CVSS total

Vulnerabilidades · 1

Openstack · Openstack Glance · CVE-2012-4573

**Name of the Vulnerable Software and Affected Versions** OpenStack Glance versions 2012.1 through 2012.2 **Description** The issue allows remote authenticated users to delete arbitrary non-protected images via an image deletion request to the `v1 API` endpoint. **Recommendations** For versions 2012.1 and 2012.2, consider restricting access to the `v1 API` endpoint to prevent unauthorized image deletion until a fix is available.