Low severityNVD Advisory· Published Jan 23, 2014· Updated Jun 17, 2026
CVE-2013-7048
CVE-2013-7048
Description
OpenStack Compute (Nova) Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
novaPyPI | < 12.0.0a0 | 12.0.0a0 |
Affected products
2Patches
Vulnerability mechanics
References
8- bugs.launchpad.net/nova/+bug/1227027nvdExploitPatchThird Party AdvisoryWEB
- rhn.redhat.com/errata/RHSA-2014-0231.htmlnvdThird Party AdvisoryWEB
- www.openwall.com/lists/oss-security/2014/01/13/2nvdMailing ListThird Party AdvisoryWEB
- github.com/advisories/GHSA-grp5-h379-j75xghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2013-7048ghsaADVISORY
- github.com/openstack/nova/commit/75be5abd6b3fa0f7f27fe9c805f832cd41d44a5dghsaWEB
- github.com/openstack/nova/commit/8a34fc3d48c467aa196f65eed444ccdc7c02f19fghsaWEB
- github.com/openstack/nova/commit/9bd7fff8c0160057643cfc37c5e2b1cd3337d6aaghsaWEB
News mentions
0No linked articles in our index yet.