Low severityNVD Advisory· Published Jan 7, 2014· Updated Jun 17, 2026
CVE-2013-6480
CVE-2013-6480
Description
Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
apache-libcloudPyPI | >= 0.12.3, < 0.13.3 | 0.13.3 |
Affected products
6cpe:2.3:a:apache:libcloud:0.12.3:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:apache:libcloud:0.12.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:libcloud:0.12.4:*:*:*:*:*:*:*
- cpe:2.3:a:apache:libcloud:0.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:libcloud:0.13.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:libcloud:0.13.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
15- libcloud.apache.org/security.htmlnvdVendor AdvisoryWEB
- github.com/advisories/GHSA-g892-9h8m-r69rghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2013-6480ghsaADVISORY
- lists.opensuse.org/opensuse-updates/2014-02/msg00015.htmlnvdWEB
- github.com/apache/libcloud/blob/abba8c1719a8bda6db8efde2d46fd1b423ae4304/CHANGES.rstghsaWEB
- github.com/apache/libcloud/commit/4449e165a00756dc61430e6ad9520f005b045d29ghsaWEB
- github.com/fog/fog/issues/2525nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/apache-libcloud/PYSEC-2014-97.yamlghsaWEB
- issues.apache.org/jira/browse/LIBCLOUD-487ghsaWEB
- web.archive.org/web/20131230232003/https://digitalocean.com/blog_posts/transparency-regarding-data-securityghsaWEB
- web.archive.org/web/20140129025443/http://www.securityfocus.com/bid/64617ghsaWEB
- web.archive.org/web/20201209074449/http://www.securityfocus.com/archive/1/530624/100/0/threadedghsaWEB
- www.securityfocus.com/archive/1/530624/100/0/threadednvd
- www.securityfocus.com/bid/64617nvd
- digitalocean.com/blog_posts/transparency-regarding-data-securitynvd
News mentions
0No linked articles in our index yet.