Folsom

folsom

Vendor: Openstack • 25 CVEs

CVEs (25)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-4573 1Openstack 3Essex FolsomImage Registry And Delivery Service (glance) Apr 29, 2026 Nov 11, 2012 N/A· v4 N/A· v3 5.5 MEDIUM· v2 The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-201...Show more The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482.Show less
CVE-2012-3447 1Openstack 2Folsom Nova Apr 29, 2026 Aug 20, 2012 N/A· v4 N/A· v3 4.9 MEDIUM· v2 virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symli...Show more virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3361.Show less
CVE-2012-3361 1Openstack 3Diablo EssexFolsom Apr 29, 2026 Jul 22, 2012 N/A· v4 N/A· v3 5.5 MEDIUM· v2 virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2), Essex (2012.1), and Diablo (2011.3) allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image.
CVE-2012-3360 1Openstack 2Essex Folsom Apr 29, 2026 Jul 22, 2012 N/A· v4 N/A· v3 5.5 MEDIUM· v2 Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files t...Show more Directory traversal vulnerability in virt/disk/api.py in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when used over libvirt-based hypervisors, allows remote authenticated users to write arbitrary files to the disk image via a .. (dot dot) in the path attribute of a file element.Show less
CVE-2012-3371 1Openstack 3Compute EssexFolsom Apr 29, 2026 Jul 17, 2012 N/A· v4 N/A· v3 3.5 LOW· v2 The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service (excessive database...Show more The Nova scheduler in OpenStack Compute (Nova) Folsom (2012.2) and Essex (2012.1), when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service (excessive database lookup calls and server hang) via a request with many repeated IDs in the os:scheduler_hints section.Show less

Previous 12