VYPR
High severityNVD Advisory· Published Feb 6, 2014· Updated Jun 17, 2026

CVE-2013-7130

CVE-2013-7130

Description

The i_create_images_and_backing (aka create_images_and_backing) method in libvirt driver in OpenStack Compute (Nova) Grizzly, Havana, and Icehouse, when using KVM live block migration, does not properly create all expected files, which allows attackers to obtain snapshot root disk contents of other users via ephemeral storage.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
novaPyPI
< 12.0.0a012.0.0a0

Affected products

9
  • OpenStack/Compute5 versions
    cpe:2.3:a:openstack:compute:2012.2:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:openstack:compute:2012.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:openstack:grizzly:-:*:*:*:*:*:*:*
  • cpe:2.3:a:openstack:havana:-:*:*:*:*:*:*:*
  • cpe:2.3:a:openstack:icehouse:-:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 12.0.0a0

Patches

Vulnerability mechanics

References

22

News mentions

0

No linked articles in our index yet.