{"id":"CVE-2015-7548","details":"OpenStack Compute (Nova) before 2015.1.3 (kilo) and 12.0.x before 12.0.1 (liberty), when using libvirt to spawn instances and use_cow_images is set to false, allow remote authenticated users to read arbitrary files by overwriting an instance disk with a crafted image and requesting a snapshot.","modified":"2026-04-10T03:45:26.272949Z","published":"2016-01-12T19:59:06Z","related":["SUSE-SU-2016:2325-1"],"references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-0018.html"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/80176"},{"type":"ADVISORY","url":"https://security.openstack.org/ossa/OSSA-2016-001.html"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N"}]}