Vulnerability CVE-2012-4573

Vulnerability Name:

CVE-2012-4573 (CCN-79895)

Assigned:

2012-10-10

Published:

2012-10-10

Updated:

2017-08-29

Summary:

The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to delete arbitrary non-protected images via an image deletion request, a different vulnerability than CVE-2012-5482.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

5.5 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:P)
4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-264

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2012-4573

Source: FEDORA
Type: UNKNOWN
FEDORA-2012-17901

Source: SUSE
Type: UNKNOWN
SUSE-SU-2012:1455

Source: OSVDB
Type: UNKNOWN
87248

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/118733/Red-Hat-Security-Advisory-2012-1558-01.html

Source: REDHAT
Type: UNKNOWN
RHSA-2012:1558

Source: CCN
Type: SA51174
OpenStack Glance Backend Storage Repository Virtual Image Deletion Vulnerability

Source: SECUNIA
Type: Vendor Advisory
51174

Source: SECUNIA
Type: Vendor Advisory
51234

Source: MLIST
Type: UNKNOWN
[oss-security] 20121107 [OSSA 2012-017] Authentication bypass for image deletion (CVE-2012-4573)

Source: MLIST
Type: UNKNOWN
[oss-security] 20121109 [OSSA 2012-017.1] Authentication bypass for image deletion (CVE-2012-4573, CVE-2012-5482) ERRATA 1

Source: CCN
Type: OSVDB ID: 87248
OpenStack Backend Storage Repository Registery Permission Verification Arbitrary Virtual Image Deletion

Source: BID
Type: UNKNOWN
56437

Source: CCN
Type: BID-56437
OpenStack Glance CVE-2012-4573 Arbitrary File Deletion Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1626-1

Source: UBUNTU
Type: UNKNOWN
USN-1626-2

Source: CCN
Type: Ubuntu Bug #1065187
Non-admin users can cause public glance images to be deleted from the backend storage repository

Source: CONFIRM
Type: UNKNOWN
https://bugs.launchpad.net/glance/+bug/1065187

Source: XF
Type: UNKNOWN
openstack-glance-sec-bypass(79895)

Source: XF
Type: UNKNOWN
openstack-glance-sec-bypass(79895)

Source: CCN
Type: OpenStack GIT Repository
Glance

Source: CONFIRM
Type: UNKNOWN
https://github.com/openstack/glance/commit/6ab0992e5472ae3f9bef0d2ced41030655d9d2bc

Source: CONFIRM
Type: UNKNOWN
https://github.com/openstack/glance/commit/90bcdc5a89e350a358cf320a03f5afe99795f6f6

Source: CONFIRM
Type: Patch
https://github.com/openstack/glance/commit/efd7e75b1f419a52c7103c7840e24af8e5deb29d

Vulnerable Configuration:

Configuration 1:

cpe:/a:openstack:essex:2012.1:*:*:*:*:*:*:*

OR cpe:/a:openstack:folsom:2012.2:*:*:*:*:*:*:*

OR cpe:/a:openstack:image_registry_and_delivery_service_(glance):-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:18021	P	USN-1626-1 -- glance vulnerability	2014-06-30
oval:org.mitre.oval:def:18027	P	USN-1626-2 -- glance vulnerability	2014-06-30
oval:com.ubuntu.precise:def:20124573000	V	CVE-2012-4573 on Ubuntu 12.04 LTS (precise) - medium.	2012-11-11

BACK