1.9

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2013-4469

GHSA ID

GHSA-2w87-5qcj-j6gx

EPSS Score

0.19053%

CWE

Published

5/17/2022

Updated

5/14/2024

KEV Status

Technology

Python

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2013-4469

CVE-2013-4469: OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 image

OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by transferring an image with a large virtual size that does not contain a large amount of data from Glance. NOTE: this issue is due to an incomplete fix for CVE-2013-2096.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2013-4469

CVE-2013-4469:

1.9

CVSS Score

-

CVSS Score

Basic Information

CVE ID

CVE-2013-4469

GHSA ID

GHSA-2w87-5qcj-j6gx

EPSS Score

0.19053%

CWE

Published

5/17/2022

Updated

5/14/2024

KEV Status

Technology

Python

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

AV:L/AC:M/Au:N/C:N/I:N/A:P

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
nova	pip	< 12.0.0a0	12.0.0a0

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from missing virtual size checks in three key areas: 1) fetch_to_raw in images.py didn't compare disk_size with max_size before the patch, 2) Raw.create_image in imagebackend.py didn't propagate size constraints to fetch operations, and 3) utils.py's fetch_image didn't pass max_size to fetch_to_raw. The commit added max_size parameters and verify_base_size checks to all these code paths, confirming these were the vulnerable points when those validations were absent.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

1.9

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2013-4469: OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 image

CVE-2013-4469:

1.9

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

CVE-2013-4469: OpenStack Compute (Nova) Denial of service due to improper validation of virtual size of QCOW2 image

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

1.9

1.9

Technical Details

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI