Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi nova Security Advisories

Loading...
Moderate
GSA_kwCzR0hTQS1yNHY0LXc5cHYtNmZwaM4AA9mC
OpenStack Cinder, Glance, and Nova vulnerable to arbitrary file access
Ecosystems: pypi
Packages: nova, glance, cinder
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: 13 days ago
Moderate
GSA_kwCzR0hTQS03aDc1LWh3eHgtcXBnY84AAxNS
OpenStack Cinder, glance, and Nova vulnerable to Path Traversal
Ecosystems: pypi
Packages: nova, glance, cinder
Source: GitHub Advisory Database
Blast Radius: 9.1
Published: over 1 year ago
Low
GSA_kwCzR0hTQS12NzI1LWM1ODgtaDkzNs4AAty1
OpenStack Nova Changing vnic_type breaks compute service restart
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: almost 2 years ago
High
GSA_kwCzR0hTQS1jN3c3LTljODUtNHF4ds4AAluh
OpenStack Nova Live migration fails to update persistent domain XML
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wZzY0LXI3cnItcGh2OM4AAhpu
OpenStack Nova Server Resource Faults Leak External Exception Details
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tNDU0LWNtN2gtcnFoaM4AAflK
OpenStack Nova Directory traversal vulnerability
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jbTU0LTN2dmYtZjVwOM4AAfld
OpenStack Nova Arbitrary file injection/corruption through directory traversal issues
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1yd2hyLWg2OWctOHFtcc4AAfU3
OpenStack Nova Information leak in libvirt LVM-backed instances
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS00M2NtLTczcHgtNXY0bc4AAfDv
OpenStack Compute (Nova) Resource limit circumvention in Nova private flavors
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1qNnhoLXE4MjYtNTVqd84AAe61
OpenStack Compute (Nova) vulnerable to denial of service via XML Entity Expansion attack
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yN3E0LTM4cWYtbTI1aM4AAe5-
OpenStack Compute Nova Improper Access Control
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0yMnc5LWoyODgtOHA5d84AAes3
OpenStack Nova Router metadata queries are not restricted by tenant
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1qdjM0LXh2anEtcHBjaM4AAeqY
OpenStack Nova VMWare driver leaks rescued images
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS01NjQ0LTJ2M2gtNXc0eM4AAefz
OpenStack Nova denial of service through compressed disk images
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS13NDI5LXhjNTUtaGM0OM4AAefd
OpenStack Nova host data leak to vm instance in rescue mode
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS0ydzg3LTVxY2otajZneM4AAefe
OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 image
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wMjU4LXhtaDMtNzJwds4AAefb
OpenStack Compute (Nova) allows remote authenticated users to gain privileges via API requests
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05N2Z2LTIyaGMtbXJnas4AAabL
OpenStack Compute (Nova) Improper Access Control
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1ocTNmLTlnZjctNzNyOM4AAaKV
Openstack Compute (Nova) Denial of service via network request that triggers large number of iptables rules
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00NnI4LTljajctcHc2Z84AAaIx
OpenStack Compute (Nova) Improper Input Validation
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14YzRnLTd2dzgtOTI0aM4AAaFr
Arbitrary file overwrite in OpenStack Nova
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02M2ZxLThmcDktdmh3cc4AAZ6B
OpenStack Compute (Nova) Denial of service via a large number of calls to the addFixedIp function
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS05OXJ4LTl4OHYtOWo4cM4AAZvg
OpenStack Nova Live migration can leak root disk into ephemeral storage
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1nMmo1LTd2Z3gtNnhyeM4AAXwo
OpenStack Cinder, Glance, and Nova contain Uncontrolled Resource Consumption
Ecosystems: pypi
Packages: nova, glance, cinder
Source: GitHub Advisory Database
Blast Radius: 12.0
Published: about 2 years ago
Critical
GSA_kwCzR0hTQS1mNGc0LWNqOGYtM2NyOc4AAXos
OpenStack Nova logs sensitive context from notification exceptions
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 15.7
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1wanZ3LXAydjUtd2Y2cc4AAU1p
OpenStack Nova Long server names grow nova-api log files significantly
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1waDJoLWhoNDktdmgyN84AAU1V
OpenStack Nova Denial of Service in network source security groups
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14am1qLXAyNzgtNGpwNc4AAU0s
OpenStack Compute (Nova) Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1xcjYyLXI5eGMtcjJnas4AAU0x
OpenStack Nova Multiple directory traversal vulnerabilities
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS01bWo2LTY0M2YtMmc4Nc4AAU0W
OpenStack Compute (Nova) allows remote authenticated users to obtain sensitive information
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1tZm1qLWd3ZzMtdmh3N84AAU0Q
OpenStack Compute (nova) allows remote authenticated users to cause a denial of service
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS05MmhjLWMyMjYtMzJxN84AAU0U
OpenStack Compute (Nova)'s VMWare driver vulnerable to denial of service
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS14OHhyLXJtOXItN212Zs4AAU0L
OpenStack Compute (Nova) has Insufficient Verification of Data Authenticity
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00M2hjLXB3dngtcG1mZ84AAU0S
OpenStack Compute (Nova) Denial of Service vulnerability
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1jMzZyLWc3MzctOXFwOM4AAU0T
OpenStack Nova Potential Xen connection password leak via StorageError
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1ocnY5LTR4NGMtOWpjOM4AAU0N
OpenStack Nova DoS through ephemeral disk backing files
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS02N3JoLTlwMjktdnJ4cs4AAU0M
OpenStack Compute (Nova) allows remote attackers to bypass intended restriction
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS0zdng3LXhmZjYtaDJ2eM4AAU0O
OpenStack Nova instance migration process does not stop when instance is deleted
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1ncnA1LWgzNzktajc1eM4AAU0P
OpenStack Nova live snapshots use an insecure local directory
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS00OWp2LTM3aG0tNmdmcM4AAU0j
OpenStack Nova host data access through resize/migration
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS1nNjNwLW1mY20tNTRjNM4AATlU
OpenStack Nova VMware instance leak potentially leading to compute DoS
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS1mZm1oLXI2N3ctbTg4Zs4AASMC
OpenStack Nova Denial of service attack on the compute host
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 12.0
Published: about 2 years ago
High
GSA_kwCzR0hTQS12cTc2LXJ4eDMtNHI0cs4AASJX
OpenStack Nova DoS by rebuilding the same instance with a new image multiple times
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS13MndmLWNnd2gtdnBxZ84AASIf
OpenStack Nova Filter Scheduler Bypass
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 10.4
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12Y212LTZyeHgtZmg3cs0_Pw
OpenStack Nova Exposure of Sensitive Information to an Unauthorized Actor
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: about 2 years ago
Low
GSA_kwCzR0hTQS1ocWZ4LTR4NHctdm13cM0-2g
Openstack nova qcow format could expose host filesystem information
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 4.5
Published: about 2 years ago
Moderate
GSA_kwCzR0hTQS12cXA2LWo0NTItajZ3cM0wPA
Open Redirect in CPython that affects users of OpenStack Nova
Ecosystems: pypi
Packages: nova
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: over 2 years ago
Statistics
Advisories: 19,517
Packages: 8,615
Repositories: 4
Ecosystems: 12
Filter by Package
tensorflow 432 tensorflow-cpu 387 tensorflow-gpu 384 apache-airflow 82 django 80 ansible 63 salt 55 Plone 52 apache-superset 51 nova 47 mlflow 46 plone 43 rdiffweb 42 Pillow 41 vyper 38 Django 36 matrix-synapse 35 moin 35 keystone 31 opencv-python 30 opencv-contrib-python 30 glance 20 langchain 19 gradio 18 PaddlePaddle 17 mercurial 17 cobbler 17 neutron 16 pillow 16 cryptography 15 notebook 15 paddlepaddle 15 modoboa 14 pyload-ng 14 pyftpdlib 14 ethyca-fides 13 OctoPrint 13 vantage6 13 wagtail 12 urllib3 12 swift 12 zenml 11 onionshare-cli 11 horizon 11 aiohttp 11 twisted 11 calibreweb 11 nautobot 10 trytond 10 Flask-AppBuilder 10 waitress 9 roundup 9 opencv-python-headless 9 opencv-contrib-python-headless 9 zope 9 cinder 9 ryu 9 Zope 9 kiwitcms 9 label-studio 8 python-keystoneclient 8 numpy 8 trac 8 aubio 8 matrix-sydent 7 sentry 7 lief 7 jupyter-server 7 lollms 7 ipython 7 pysaml2 7 pip 7 pgadmin4 7 litellm 7 scrapy 7 apache-airflow-providers-apache-hive 6 lxml 6 yt-dlp 6 Zope2 6 tuf 6 mindsdb 6 inventree 6 Moin 6 graphite-web 6 tornado 6 web2py 6 mailman 6 requests 6 Products.CMFPlone 5 whoogle-search 5 saleor 5 ckan 5 pyspark 5 omero-web 5 nltk 5 bleach 5 feedparser 5 oauthenticator 5 paramiko 5 Jinja2 5 lmdb 5 python-gnupg 5 PyPDF2 4 GitPython 4 buildbot 4 dbt-core 4 keylime 4 markdown2 4 langchain-experimental 4 Werkzeug 4 httpie 4 Keystone 4 Pygments 4 Scrapy 4 Radicale 4 nvflare 4 Flask-Security-Too 4 FreeTAKServer-UI 4 reportlab 4 jupyterhub 4 barbican 4 qutebrowser 4 transformers 4 werkzeug 4 tripleo-heat-templates 4 starlette 4 pretix 4 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 aws-iot-device-sdk-v2 4 ansible-core 4 awsiotsdk 4 datasette 4 Weblate 4 grpcio 4 grpc 4 bottle 4 jwcrypto 4 esphome 4 django-helpdesk 3 onnx 3 copyparty 3 Nova 3 homeassistant 3 Red-DiscordBot 3 apache-iotdb 3 python-jose 3 jupyterlab 3 poetry 3 localstack 3 streamlit 3 plone.supermodel 3 mistune 3 plone.app.dexterity 3 plone.app.theming 3 plone.app.event 3 io.grpc:grpc-protobuf 3 changedetection.io 3 jupyter-server-proxy 3 apache-airflow-providers-apache-spark 3 pyarrow 3 setuptools 3 pyyaml 3 asyncssh 3 SQLAlchemy 3 ray 3 apache-libcloud 3 Kallithea 3 flask 3 ujson 3 fava 3 Mezzanine 3 sickrage 3 sosreport 3 httplib2 3 vanna 3 sqlparse 3 rsa 3 torchserve 3 ydata-profiling 3 openvpn-monitor 3 slixmpp 3 octavia 3 dtale 3 gerapy 3 scikit-learn 3 bitlyshortener 3 ajenti 3 mayan-edms 3 pandasai 3 ecdsa 3 llama-index 3 pywasm3 3 indico 3 dulwich 3 keystonemiddleware 3 django-tinymce 3 TinyMCE 3 Products.PluggableAuthService 3 ansible-runner 3 tinymce 3