Vulnerabilites related to amazon - s3_store
CVE-2013-1840 (GCVE-0-2013-1840)
Vulnerability from cvelistv5
Published
2013-03-22 21:00
Modified
2024-08-06 15:13
Severity ?
EPSS score ?
Summary
The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image.
References
| ▼ | URL | Tags |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/82878 | vdb-entry, x_refsource_XF | |
| https://review.openstack.org/#/c/24437/ | x_refsource_CONFIRM | |
| http://www.ubuntu.com/usn/USN-1764-1 | vendor-advisory, x_refsource_UBUNTU | |
| https://review.openstack.org/#/c/24438/ | x_refsource_CONFIRM | |
| https://bugs.launchpad.net/glance/+bug/1135541 | x_refsource_CONFIRM | |
| http://secunia.com/advisories/52565 | third-party-advisory, x_refsource_SECUNIA | |
| http://rhn.redhat.com/errata/RHSA-2013-0707.html | vendor-advisory, x_refsource_REDHAT | |
| http://osvdb.org/91304 | vdb-entry, x_refsource_OSVDB | |
| http://www.openwall.com/lists/oss-security/2013/03/14/15 | mailing-list, x_refsource_MLIST | |
| http://www.securityfocus.com/bid/58490 | vdb-entry, x_refsource_BID | |
| https://review.openstack.org/#/c/24439/ | x_refsource_CONFIRM |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T15:13:33.277Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "openstack-glance-api-info-disclosure(82878)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/82878", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://review.openstack.org/#/c/24437/", }, { name: "USN-1764-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-1764-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://review.openstack.org/#/c/24438/", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugs.launchpad.net/glance/+bug/1135541", }, { name: "52565", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/52565", }, { name: "RHSA-2013:0707", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2013-0707.html", }, { name: "91304", tags: [ "vdb-entry", "x_refsource_OSVDB", "x_transferred", ], url: "http://osvdb.org/91304", }, { name: "[oss-security] 20130314 [OSSA 2013-007] Backend credentials leak in Glance v1 API (CVE-2013-1840)", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2013/03/14/15", }, { name: "58490", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/58490", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://review.openstack.org/#/c/24439/", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2013-03-14T00:00:00", descriptions: [ { lang: "en", value: "The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-08-28T12:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "openstack-glance-api-info-disclosure(82878)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/82878", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://review.openstack.org/#/c/24437/", }, { name: "USN-1764-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-1764-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://review.openstack.org/#/c/24438/", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugs.launchpad.net/glance/+bug/1135541", }, { name: "52565", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/52565", }, { name: "RHSA-2013:0707", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2013-0707.html", }, { name: "91304", tags: [ "vdb-entry", "x_refsource_OSVDB", ], url: "http://osvdb.org/91304", }, { name: "[oss-security] 20130314 [OSSA 2013-007] Backend credentials leak in Glance v1 API (CVE-2013-1840)", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2013/03/14/15", }, { name: "58490", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/58490", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://review.openstack.org/#/c/24439/", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2013-1840", datePublished: "2013-03-22T21:00:00", dateReserved: "2013-02-19T00:00:00", dateUpdated: "2024-08-06T15:13:33.277Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Vulnerability from fkie_nvd
Published
2013-03-22 21:55
Modified
2025-04-11 00:51
Severity ?
Summary
The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:openstack:glance:v1:*:*:*:*:*:*:*", matchCriteriaId: "3E39288B-D80F-493D-BD2A-6A749EBCE0AB", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:a:openstack:essex:2012.1:*:*:*:*:*:*:*", matchCriteriaId: "E5FDB43F-B315-4F68-9D86-B644F2D4DF9A", vulnerable: false, }, { criteria: "cpe:2.3:a:openstack:folsom:2012.2:*:*:*:*:*:*:*", matchCriteriaId: "E76B76AB-D744-4163-8615-7BA18ABB1347", vulnerable: false, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:a:amazon:s3_store:-:*:*:*:*:*:*:*", matchCriteriaId: "05BC26BF-62C4-47E9-81B1-C968904F1FF2", vulnerable: false, }, { criteria: "cpe:2.3:a:openstack:swift:-:*:*:*:*:*:*:*", matchCriteriaId: "BE675165-BF5F-4BB3-964F-777CC3DDFF98", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], cveTags: [], descriptions: [ { lang: "en", value: "The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obtain the operator's backend credentials via a request for a cached image.", }, { lang: "es", value: "La API v1 en OpenStack Vistazo Essex (2012.1), Folsom (2012.2) y Grizzly, al utilizar el 'single-tenant Swift' o la tienda S3, informa el campo de ubicación, lo que permite obtener las credenciales del back-end del operador a usuarios remotos autenticados a través de una solicitud de una imagen almacenada en caché.", }, ], id: "CVE-2013-1840", lastModified: "2025-04-11T00:51:21.963", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 3.5, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 6.8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2013-03-22T21:55:01.487", references: [ { source: "secalert@redhat.com", url: "http://osvdb.org/91304", }, { source: "secalert@redhat.com", url: "http://rhn.redhat.com/errata/RHSA-2013-0707.html", }, { source: "secalert@redhat.com", tags: [ "Vendor Advisory", ], url: "http://secunia.com/advisories/52565", }, { source: "secalert@redhat.com", url: "http://www.openwall.com/lists/oss-security/2013/03/14/15", }, { source: "secalert@redhat.com", url: "http://www.securityfocus.com/bid/58490", }, { source: "secalert@redhat.com", url: "http://www.ubuntu.com/usn/USN-1764-1", }, { source: "secalert@redhat.com", url: "https://bugs.launchpad.net/glance/+bug/1135541", }, { source: "secalert@redhat.com", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/82878", }, { source: "secalert@redhat.com", url: "https://review.openstack.org/#/c/24437/", }, { source: "secalert@redhat.com", url: "https://review.openstack.org/#/c/24438/", }, { source: "secalert@redhat.com", url: "https://review.openstack.org/#/c/24439/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://osvdb.org/91304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://rhn.redhat.com/errata/RHSA-2013-0707.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "http://secunia.com/advisories/52565", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.openwall.com/lists/oss-security/2013/03/14/15", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/58490", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.ubuntu.com/usn/USN-1764-1", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://bugs.launchpad.net/glance/+bug/1135541", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/82878", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://review.openstack.org/#/c/24437/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://review.openstack.org/#/c/24438/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://review.openstack.org/#/c/24439/", }, ], sourceIdentifier: "secalert@redhat.com", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }