Unrated severityNVD Advisory· Published Feb 13, 2013· Updated Apr 29, 2026
CVE-2013-0208
CVE-2013-0208
Description
The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_device_mapping parameter.
Affected products
5cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
Patches
2243d516cea9d317cc0af3855Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
12- secunia.com/advisories/51963nvdVendor Advisory
- secunia.com/advisories/51992nvdVendor Advisory
- osvdb.org/89661nvd
- rhn.redhat.com/errata/RHSA-2013-0208.htmlnvd
- www.openwall.com/lists/oss-security/2013/01/29/9nvd
- www.securityfocus.com/bid/57613nvd
- www.ubuntu.com/usn/USN-1709-1nvd
- bugs.launchpad.net/nova/+bug/1069904nvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/81697nvd
- github.com/openstack/nova/commit/243d516cea9d3caa5a8267b12d2f577dcb24193bnvd
- github.com/openstack/nova/commit/317cc0af385536dee43ef2addad50a91357fc1adnvd
News mentions
0No linked articles in our index yet.