Lucene search
HistoryAug 26, 2015 - 7:59 p.m.
CVE-2015-3221
openstack
neutron
cve-2015-3221
security vulnerability
denial of service
iptables
firewall
authentication
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%
OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to cause a denial of service (L2 agent crash) by adding an address pair that is rejected by the ipset tool.
Affected configurations
Node
openstackneutronRange2014.2–2014.2.4
ORopenstackneutronRange2015.1.0–2015.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| openstack:neutron | openstack neutron | lt | 2014.2.4 |
| openstack:neutron | openstack neutron | lt | 2015.1.1 |
Related
redhat
redhat
(RHSA-2015:1680) Moderate: openstack-neutron security and bug fix update
2015-08-24 00:00:00
osv
osv
OpenStack Neutron Improper Input Validation vulnerability
2022-05-14 02:19:50
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:07:37
ubuntucve
ubuntucve
CVE-2015-3221
2015-08-26 00:00:00
debiancve
debiancve
CVE-2015-3221
2015-08-26 19:59:03
prion
prion
Code injection
2015-08-26 19:59:00
cvelist
cvelist
CVE-2015-3221
2015-08-26 19:00:00
github
github
OpenStack Neutron Improper Input Validation vulnerability
2022-05-14 02:19:50
nvd
nvd
CVE-2015-3221
2015-08-26 19:59:03
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.028 Low
EPSS
Percentile
90.7%
Related for CVE-2015-3221