CVE-2022-4134

Inclusion of Functionality from Untrusted Control Sphere in pypi/glance

Identifiers

GHSA-5gp5-vxj6-4257, CVE-2022-4134

Package Slug

pypi/glance

Vulnerability

Inclusion of Functionality from Untrusted Control Sphere

Description

A flaw was found in openstack-glance. This issue could allow a remote, authenticated attacker to tamper with images, compromising the integrity of virtual machines created using these modified images.

Affected Versions

All versions up to 25.1.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-03-16

source