Since its creation, Nova has had its own direct database access, which has left OpenStack with an unacceptable level of risk. Since at least August of 2011, a bug has been publicly known and listed in Nova that is so critical, that if exploited it could corrupt an entire cloud.