← Back

CVE-2015-3280

nvd nist
Published: Oct 26, 2015Modified: May 6, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:L/Au:S/C:N/I:N/A:C
Exploitability: 8.0 / Impact: 6.9
Source: NVD

Description

OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state.

Affected (2)

Products: Openstack: Nova
Openstack
1 product
Nova
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Openstack
Nova
From 2014.2 to 2014.2.4
Nova
From 2015.1.0 to 2015.1.2

Related CWEs

CWE-399
CWE-399

References (10)

Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party AdvisoryVDB Entry
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.