CVSS: 6.8EPSS: 2%CPEs: 1EXPL: 0CVE-2016-7498
https://notcve.org/view.php?id=CVE-2016-7498
27 Sep 2016 — OpenStack Compute (nova) 13.0.0 does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of service (disk consumption) by deleting instances while in the resize state. NOTE: this vulnerability exists because of a CVE-2015-3280 regression. OpenStack Compute (nova) 13.0.0 no elimina adecuadamente instancias desde nodos de cómputo, lo que permite a atacantes remotos provocar una denegación de servicio (consumo de disco) mediante la eliminación de instanci... • http://www.openwall.com/lists/oss-security/2016/09/21/8 • CWE-399: Resource Management Errors •
CVSS: 5.3EPSS: 3%CPEs: 6EXPL: 1CVE-2013-1664 – bindings: Internal entity expansion in Python XML libraries inflicts DoS vulnerabilities
https://notcve.org/view.php?id=CVE-2013-1664
03 Apr 2013 — The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service (resource consumption and crash) via an XML Entity Expansion (XEE) attack. OpenStack Keystone Essex, Folsom, y Grizzly; Compute (Nova) Essex y Folsom, Folsom y Cinder permite a atacantes remotos provocar una denegación de servicio (consumo de recursos y c... • http://blog.python.org/2013/02/announcing-defusedxml-fixes-for-xml.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •