Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible to create images with a URL such as 'http://localhost:22'. This could then allow an attacker to enumerate internal network details while appearing masked, since the scan would appear to originate from the Glance Image service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenStack Glance Image Service API 安全漏洞
Vulnerability Description
OpenStack是美国国家航空航天局(National Aeronautics and Space Administration)和美国Rackspace公司合作研发的一个云平台管理项目。Glance是其中的一个可存储、查询和检索虚拟机镜像的项目。Image Service API是一个查询VM镜像元数据以及检索实际图像的API。 OpenStack Glance Image Service API 1版本中存在安全漏洞。攻击者可利用该漏洞执行网络端口扫描。
CVSS Information
N/A
Vulnerability Type
N/A