Publish GHSA-q748-mcwg-xmqv

Author: advisory-database[bot]

advisories/github-reviewed/2022/05/GHSA-q748-mcwg-xmqv/GHSA-q748-mcwg-xmqv.json

@@ -1,14 +1,19 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-q748-mcwg-xmqv",
-  "modified": "2023-02-08T17:59:13Z",
+  "modified": "2026-01-20T13:05:45Z",
   "published": "2022-05-17T04:04:02Z",
   "aliases": [
     "CVE-2015-5251"
   ],
   "summary": "OpenStack Image Service (Glance) allows remote authenticated users to bypass access restrictions",
   "details": "OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via the HTTP x-image-meta-status header to images/*.",
-  "severity": [],
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N"
+    }
+  ],
   "affected": [
     {
       "package": {
@@ -20,7 +25,7 @@
           "type": "ECOSYSTEM",
           "events": [
             {
-              "introduced": "0"
+              "introduced": "2011.2"
             },
             {
               "fixed": "2014.2.4"
@@ -84,7 +89,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-863"
+    ],
     "severity": "MODERATE",
     "github_reviewed": true,
     "github_reviewed_at": "2023-02-08T17:59:13Z",