CVE-2022-4134
First published: Wed Nov 23 2022(Updated: )
<a href="https://wiki.openstack.org/wiki/OSSN/OSSN-0090">https://wiki.openstack.org/wiki/OSSN/OSSN-0090</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenStack Glance | ||
| Redhat Openstack | =13 | |
| Redhat Openstack | =16.1 | |
| Redhat Openstack | =16.2 | |
| Redhat Openstack | =17 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-4134?
CVE-2022-4134 is a vulnerability found in the OpenStack Glance software that allows a remote authenticated attacker to tamper with images, compromising the integrity of virtual machines created using these modified images.
How does CVE-2022-4134 impact OpenStack Glance?
CVE-2022-4134 allows a remote authenticated attacker to tamper with images, potentially compromising the integrity of virtual machines created with those modified images.
What is the severity of CVE-2022-4134?
The severity of CVE-2022-4134 is medium, with a CVSSv3 score of 2.8.
Which software versions are affected by CVE-2022-4134?
OpenStack Glance versions, Red Hat OpenStack versions 13, 16.1, 16.2, and 17 are affected by CVE-2022-4134.
How can I fix the CVE-2022-4134 vulnerability?
To fix the CVE-2022-4134 vulnerability, it is recommended to update OpenStack Glance to the latest version available and apply any patches or security updates provided by the software vendor.
- collector/redhat-bugzilla
- alias/CVE-2022-4134
- collector/nvd-index
- vendor/openstack
- canonical/openstack glance
- vendor/redhat
- canonical/redhat openstack
- version/redhat openstack/13
- version/redhat openstack/16.1
- version/redhat openstack/16.2
- version/redhat openstack/17