VYPR
Low severityNVD Advisory· Published May 8, 2014· Updated Jun 17, 2026

CVE-2014-0134

CVE-2014-0134

Description

The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, allows remote authenticated users to read certain compute host files by overwriting an instance disk with a crafted image.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
novaPyPI
< 12.0.0a012.0.0a0

Affected products

4
  • OpenStack/Compute3 versions
    cpe:2.3:a:openstack:compute:2013.2:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:openstack:compute:2013.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:compute:2013.2.2:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 12.0.0a0

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.