Lucene search
RedhatCVELIST:CVE-2021-20267HistoryMay 28, 2021 - 6:46 p.m.
CVE-2021-20267
2021-05-2818:46:11
CWE-345
redhat
www.cve.org
5
openstack-neutron
open vswitch
firewall rules
ipv6 addresses
denial of service
interception of traffic
A flaw was found in openstack-neutron’s default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the IPv6 addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations. Only deployments using the Open vSwitch driver are affected. Source: OpenStack project. Versions before openstack-neutron 15.3.3, openstack-neutron 16.3.1 and openstack-neutron 17.1.1 are affected.
CNA Affected
[
{
"product": "openstack-neutron",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "openstack-neutron 15.3.3, openstack-neutron 16.3.1, openstack-neutron 17.1.1"
}
]
}
]Related
osv
osv
Openstack Neutron has Insufficient Verification of IPv6 addresses
2022-05-24 19:03:37
PYSEC-2021-136
2021-05-28 19:15:00
neutron vulnerabilities
2023-05-10 11:30:08
debiancve
debiancve
CVE-2021-20267
2021-05-28 19:15:07
nvd
nvd
CVE-2021-20267
2021-05-28 19:15:07
redhatcve
redhatcve
CVE-2021-20267
2021-03-05 01:44:14
ubuntucve
ubuntucve
CVE-2021-20267
2021-05-28 00:00:00
cve
cve
CVE-2021-20267
2021-05-28 19:15:07
github
github
Openstack Neutron has Insufficient Verification of IPv6 addresses
2022-05-24 19:03:37
prion
prion
Design/Logic Flaw
2021-05-28 19:15:00
debian
debian
[SECURITY] [DSA 4983-1] neutron security update
2021-10-10 18:06:29
openvas
openvas
Debian: Security Advisory (DSA-4983-1)
2021-10-12 00:00:00
Ubuntu: Security Advisory (USN-6067-1)
2023-05-11 00:00:00
nessus
nessus
Debian DSA-4983-1 : neutron - security update
2021-10-11 00:00:00
ubuntu
ubuntu
OpenStack Neutron vulnerabilities
2023-05-10 00:00:00