CVE-2015-3289
EPSS 0.42%
Description
OpenStack Glance before 2015.1.1 (kilo) allows remote authenticated users to cause a denial of service (disk consumption) by repeatedly using the import task flow API to create images and then deleting them.
How to fix CVE-2015-3289
To remediate CVE-2015-3289, upgrade the affected package to a fixed version below.
- Debian/glance—upgrade to 2015.1.0-4 or later
Is CVE-2015-3289 being exploited?
Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2015.1.0-4