CVE-2013-4317

Published: 2018-02-06T14:29Z

Last Modified: 2024-11-21T01:55Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In Apache CloudStack 4.1.0 and 4.1.1, when calling the CloudStack API call listProjectAccounts as a regular, non-administrative user, the user is able to see information for accounts other than their own. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt