VYPR
High severityNVD Advisory· Published Aug 20, 2012· Updated Jun 16, 2026

CVE-2012-3447

CVE-2012-3447

Description

virt/disk/api.py in OpenStack Compute (Nova) 2012.1.x before 2012.1.2 and Folsom before Folsom-3 allows remote authenticated users to overwrite arbitrary files via a symlink attack on a file in an image that uses a symlink that is only readable by root. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-3361.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
novaPyPI
< 12.0.012.0.0

Affected products

3

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.