CVE-2013-4428
EPSS 0.47%Published: 10/27/2013Modified: 4/28/2026
Description
OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the download_image policy is configured, does not properly restrict access to cached images, which allows remote authenticated users to read otherwise restricted images via an image UUID.
Affected packages (1)
- Debian/glancefrom 0, < 2013.2-1