CVE-2014-5040

Name of the Vulnerable Software and Affected Versions HP Helion Eucalyptus versions 4.1.x through 4.1.1 HPE Helion Eucalyptus versions 4.2.x through 4.2.0

Description The issue allows remote authenticated users to bypass intended access restrictions. This can be achieved in two ways: by modifying arbitrary access key credentials if the attacker has knowledge of a key ID, or by modifying signing certificates if the attacker has knowledge of a certificate ID.

Recommendations For HP Helion Eucalyptus versions 4.1.x through 4.1.1, update to version 4.1.2 or later. For HPE Helion Eucalyptus versions 4.2.x through 4.2.0, update to version 4.2.1 or later.