VDB
CVE-2013-1840
CVE-2013-1840
PUBLISHED
CVSS 3.5 LOW
OpenStack Glance is vulnerable to Exposure of Sensitive Information
EPSS 0.34% · 57.3th percentile
Risk Scores
CVSS 2.0
3.5
EPSS Score
0.34%
57.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| PyPI | glance | 0 |
| openstack | glance | v1 |
Timeline
- Mar 22, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- openstack-glance-api-info-disclosure(82878) vdb
- https://review.openstack.org/#/c/24437/ url
- USN-1764-1 vendor-advisory
- https://review.openstack.org/#/c/24438/ url
- https://bugs.launchpad.net/glance/+bug/1135541 url
- 52565 third-party-advisory
- RHSA-2013:0707 vendor-advisory
- 91304 vdb
- [oss-security] 20130314 [OSSA 2013-007] Backend credentials leak in Glance v1 API (CVE-2013-1840) mailing-list
- 58490 vdb
- https://review.openstack.org/#/c/24439/ url
- https://nvd.nist.gov/vuln/detail/CVE-2013-1840 advisory
- https://github.com/openstack/glance/commit/74b067df9726f9cf3e6e17e248719794a6ee0745 url
- https://github.com/openstack/glance/commit/dd849a9be540bedd4fd904cc0b86ccd9c3e34af2 url
- https://github.com/openstack/glance/commit/e75764eee34915f8bc5b664ac18e47a556c9d3dd url
- https://github.com/openstack/glance package
- https://review.openstack.org/#/c/24437 url
- https://review.openstack.org/#/c/24438 url
- https://review.openstack.org/#/c/24439 url