{"id":"CVE-2013-7048","details":"OpenStack Compute (Nova) Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots.","aliases":["GHSA-grp5-h379-j75x"],"modified":"2026-04-10T03:43:08.714609Z","published":"2014-01-23T21:55:04Z","references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2014-0231.html"},{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2014/01/13/2"},{"type":"ADVISORY","url":"https://bugs.launchpad.net/nova/+bug/1227027"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2014/01/13/2"},{"type":"EVIDENCE","url":"https://bugs.launchpad.net/nova/+bug/1227027"},{"type":"FIX","url":"https://bugs.launchpad.net/nova/+bug/1227027"}],"schema_version":"1.7.5"}