A flaw was found in OpenStack due to an inconsistency between Cinder and Nova. This issue can be triggered intentionally or by accident. A remote, authenticated attacker could exploit this vulnerability by detaching one of their volumes from Cinder. The highest impact is to confidentiality.
References
Link | Resource |
---|---|
https://bugs.launchpad.net/bugs/2004555 | Issue Tracking |
https://security.openstack.org/ossa/OSSA-2023-003.html |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-05-12T00:00:00
Updated: 2023-07-23T00:00:00
Reserved: 2023-04-14T00:00:00
Link: CVE-2023-2088
JSON object: View
NVD Information
Status : Modified
Published: 2023-05-12T21:15:09.430
Modified: 2023-11-07T04:11:55.380
Link: CVE-2023-2088
JSON object: View
Redhat Information
No data.