Ubuntu Security Notice (C) 2012-2013 Canonical, Inc. / NASL script (C) 2012-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing a security-related patch.
Nachi Ueno, Rohit Karajgi, and Venkatesan Ravikumar discovered that
when Nova is configured to use the OpenStack API, it would not
correctly enforce access controls on certain incoming requests. A
remote authenticated attacker could exploit this to change resources
of arbitrary tenants.
Update the affected nova-api package.
Risk factor :
Medium / CVSS Base Score : 4.9
Family: Ubuntu Local Security Checks
Nessus Plugin ID: 57498 ()
CVE ID: CVE-2012-0030