CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
EPSS
Percentile
55.1%
Algorithmic complexity vulnerability in OpenStack Compute (Nova) before 2013.1.3 and Havana before havana-3 does not properly handle network source security group policy updates, which allows remote authenticated users to cause a denial of service (nova-network consumption) via a large number of server-creation operations, which triggers a large number of update requests.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | nova | < 2013.1.2-3 | nova_2013.1.2-3_all.deb |
Debian | 11 | all | nova | < 2013.1.2-3 | nova_2013.1.2-3_all.deb |
Debian | 999 | all | nova | < 2013.1.2-3 | nova_2013.1.2-3_all.deb |
Debian | 13 | all | nova | < 2013.1.2-3 | nova_2013.1.2-3_all.deb |