Lucene search

[email protected]CVE-2014-8333

HistoryOct 31, 2014 - 2:55 p.m.

CVE-2014-8333

2014-10-3114:55:07

CWE-399

[email protected]

web.nvd.nist.gov

vmware

openstack compute

nova

denial of service

disk consumption

cve-2014-8333

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.8%

JSON

The VMware driver in OpenStack Compute (Nova) before 2014.1.4 allows remote authenticated users to cause a denial of service (disk consumption) by deleting an instance in the resize state.

Affected configurations

NVD

Node

redhatenterprise_linuxMatch6.0

redhatenterprise_linuxMatch7.0

AND

redhatopenstackMatch5.0

Node

openstacknovaRange2014.1–2014.1.4

CPENameOperatorVersion
redhat:openstackredhat openstackeq5.0

CPE	Name	Operator	Version
redhat:openstack	redhat openstack	eq	5.0

References

lists.openstack.org/pipermail/openstack-announce/2014-October/000298.html

rhn.redhat.com/errata/RHSA-2015-0843.html

rhn.redhat.com/errata/RHSA-2015-0844.html

secunia.com/advisories/60531

bugs.launchpad.net/nova/+bug/1359138

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.8%

JSON

Related for CVE-2014-8333

ubuntucve1 prion1 debiancve1 nvd1 cvelist1 github1 veracode1 redhat2