CVE-2013-1068
Description
The OpenStack Nova (python-nova) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder (python-cinder) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0 before 1:2014.1-0ubuntu1.1 for Ubuntu 13.10 and 14.04 LTS does not properly set the sudo configuration, which makes it easier for attackers to gain privileges by leveraging another vulnerability.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.222
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| OpenStack Compute cloud infrastructure (USN-2247-1) python-nova_2014.1-0ubuntu1_all.deb | Linux |
| OpenStack Compute cloud infrastructure (USN-2247-1) python-nova_2014.1.3-0ubuntu1.1_all.deb | Linux |
| OpenStack storage service (USN-2248-1) python-cinder_2014.1-0ubuntu1_all.deb | Linux |
| OpenStack storage service (USN-2248-1) python-cinder_2014.1.5-0ubuntu2_all.deb | Linux |
| OpenStack storage service (USN-2248-1) python-cinder_2014.1.3-0ubuntu1.1_all.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234