Comment 53 for bug 2004555
Revision history for this message
| Nick Tait (nickthetait) wrote Re: [ussuri] Wrong volume attachment - volumes overlapping when connected through iscsi on host | #53 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
It is not apparent to me who is waiting on what right now.
Gorka, could you help me better understand what is required for an attacker to exploit this? I made a rough guess at CVSS score: https:/
* Could this be executed remotely?
* What is the level of complexity to exploit?
* Could an attacker exploit this multiple times and eventually gain control of all images within the OpenStack deployment?
* Attacker would need at least a basic user account right?
Fungi, what are your thoughts on security classification? Possibly A or B1? Is it too early to pick a disclosure date?