GHSA-6rrm-xxvh-7r87

Suggest an improvement
Source
https://github.com/advisories/GHSA-6rrm-xxvh-7r87
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6rrm-xxvh-7r87/GHSA-6rrm-xxvh-7r87.json
JSON Data
https://api.test.osv.dev/v1/vulns/GHSA-6rrm-xxvh-7r87
Aliases
Published
2022-05-17T01:41:54Z
Modified
2024-11-22T04:59:54.263734Z
Summary
OpenStack Glance arbitrary deletion of non-protected images
Details

The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482.

Database specific
{
    "nvd_published_at": "2012-11-11T13:00:00Z",
    "cwe_ids": [],
    "severity": "MODERATE",
    "github_reviewed": true,
    "github_reviewed_at": "2024-01-12T20:29:57Z"
}
References

Affected packages

PyPI / glance

Package

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
11.0.0a0