Miggo Logo

CVE-2015-5286: OpenStack Image Service (Glance) allows remote authenticated users to bypass storage quota, cause denial of service

6.8

CVSS Score

Basic Information

EPSS Score
0.62507%
Published
5/17/2022
Updated
2/13/2023
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
AV:N/AC:L/Au:S/C:N/I:N/A:C
Package NameEcosystemVulnerable VersionsFirst Patched Version
glancepip< 2014.2.42014.2.4
glancepip>= 2015.1.0, < 2015.1.22015.1.2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability manifests when token expiration during upload/deletion leaves storage artifacts. The patches add exception handling for authentication failures in two critical paths:

  1. upload_utils._safe_kill() handles image status transitions and cleanup
  2. ImportTask._import_image() manages background import operations By adding explicit handling of Unauthorized/NotAuthenticated exceptions in these functions, the patches demonstrate these were the points where token expiration could lead to quota bypass. These functions would appear in stack traces during exploitation as they handle the image state changes and storage interactions.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Op*nSt**k Im*** S*rvi** (*l*n**) ***or* ****.*.* (juno) *n* ****.*.x ***or* ****.*.* (kilo) *llows r*mot* *ut**nti**t** us*rs to *yp*ss t** stor*** quot* *n* **us* * **ni*l o* s*rvi** (*isk *onsumption) *y **l*tin* im***s t**t *r* **in* uplo**** usin

Reasoning

T** vuln*r**ility m*ni**sts w**n tok*n *xpir*tion *urin* uplo**/**l*tion l**v*s stor*** *rti***ts. T** p*t***s *** *x**ption **n*lin* *or *ut**nti**tion **ilur*s in two *riti**l p*t*s: *. uplo**_utils._s***_kill() **n*l*s im*** st*tus tr*nsitions *n*