Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive information between tenants.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
openstack-cinder 安全漏洞
Vulnerability Description
openstack-cinder是一个通过传统后端块存储设备提供软件定义块存储的服务。 openstack-cinder Queens及之前版本中存在安全漏洞,该漏洞源于存储卷的配置允许新建的数据卷包含以前的数据。攻击者可利用该漏洞泄露租户之间的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A