I'd say this could be valid for OSSA because you escalate from DB compromise (DoS, data exploitation) to remote code execution with the glance user rights...
I'd say this could be valid for OSSA because you escalate from DB compromise (DoS, data exploitation) to remote code execution with the glance user rights...