CVE-2020-9543
- Source
- https://cve.org/CVERecord?id=CVE-2020-9543
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-9543.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2020-9543
- Aliases
- Downstream
- Related
- Published
- 2020-03-12T17:15:11.077Z
- Modified
- 2026-04-02T06:16:42.629269Z
- Severity
-
- 8.3 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L CVSS Calculator
- Summary
- [none]
- Details
-
OpenStack Manila <7.4.1, >=8.0.0 <8.1.1, and >=9.0.0 <9.1.1 allows attackers to view, update, delete, or share resources that do not belong to them, because of a context-free lookup of a UUID. Attackers may also create resources, such as shared file systems and groups of shares on such share networks.
- References
Affected packages
Git / github.com/openstack/manila
Affected ranges
- Type
- GIT
- Repo
- https://github.com/openstack/manila
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroducedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "7.4.1" }, { "introduced": "8.0.0" }, { "fixed": "8.1.1" }, { "introduced": "9.0.0" }, { "fixed": "9.1.1" } ] }
Affected versions
1.*
1.0.0
1.0.0.0b1
1.0.0.0b2
1.0.0.0b3
1.0.0.0rc1
1.0.0.0rc2
1.0.0.0rc3
1.0.0a0
1.0.1
1.0.2
10.*
10.0.0
10.0.0.0rc1
10.0.0.0rc2
10.0.1
10.0.2
10.1.0
10.2.0
11.*
11.0.0
11.0.0.0rc1
11.0.1
11.1.0
11.1.1
11.1.2
12.*
12.0.0
12.0.0.0rc1
12.1.0
12.1.1
12.1.2
13.*
13.0.0
13.0.0.0rc1
13.0.1
13.0.2
13.0.3
13.0.4
13.1.0
13.2.0
14.*
14.0.0
14.0.0.0rc1
14.0.1
14.1.0
14.1.1
14.2.0
15.*
15.0.0
15.0.0.0rc1
15.1.0
15.2.0
15.3.0
15.4.0
15.4.1
16.*
16.0.0
16.0.0.0rc1
16.1.0
16.2.0
16.2.1
16.3.0
17.*
17.0.0
17.0.0.0rc1
17.1.0
17.2.0
17.3.0
17.3.1
17.4.0
18.*
18.0.0
18.0.0.0rc1
18.0.1
18.1.0
18.2.0
18.2.1
18.3.0
19.*
19.0.0
19.0.0.0rc1
19.0.0.0rc2
19.0.1
19.1.0
19.1.1
2.*
2.0.0
2.0.0.0b1
2.0.0.0b2
2.0.0.0b3
2.0.0.0rc1
20.*
20.0.0
20.0.0.0rc1
20.0.0.0rc2
20.0.1
2014.*
2014.2
2014.2.b3
2014.2.rc1
2014.2.rc2
2015.*
2015.1.0
2015.1.0b1
2015.1.0b2
2015.1.0b3
2015.1.0rc1
2015.1.0rc2
2023.*
2023.1-eom
2023.2-eol
2024.*
2024.1-eom
21.*
21.0.0
21.0.0.0rc1
21.0.0.0rc2
21.0.1
22.*
22.0.0
22.0.0.0rc1
22.0.0.0rc2
3.*
3.0.0
3.0.0.0b1
3.0.0.0b2
3.0.0.0b3
3.0.0.0rc1
4.*
4.0.0
4.0.0.0b1
4.0.0.0b2
4.0.0.0b3
4.0.0.0rc1
4.0.0.0rc2
4.0.1
4.0.2
5.*
5.0.0
5.0.0.0b1
5.0.0.0b2
5.0.0.0b3
5.0.0.0rc1
5.0.1
5.0.2
5.0.3
5.1.0
6.*
6.0.0
6.0.0.0b1
6.0.0.0b2
6.0.0.0b3
6.0.0.0rc1
6.0.0.0rc2
6.0.0.0rc3
6.0.1
6.0.2
6.1.0
6.2.0
6.3.0
6.3.1
6.3.2
7.*
7.0.0
7.0.0.0b1
7.0.0.0b2
7.0.0.0b3
7.0.0.0rc1
7.1.0
7.2.0
7.3.0
7.4.0
8.*
8.0.0
8.0.0.0rc1
8.0.1
8.1.0
9.*
9.0.0
9.0.0.0rc1
9.1.0
Other
juno-eol
kilo-eol
liberty-eol
mitaka-eol
newton-eol
ocata-em
ocata-eol
pike-em
pike-eol
queens-em
queens-eol
ussuri-em
ussuri-eol
victoria-em
victoria-eol
victoria-eom
wallaby-em
wallaby-eol
wallaby-eom
xena-em
xena-eol
xena-eom
yoga-eol
yoga-eom
zed-eom