Lucene search
HistoryJun 02, 2014 - 3:55 p.m.
CVE-2013-6433
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.2%
The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file.
Affected configurations
Node
openstackneutronRange2013.1–2013.2.3
Node
canonicalubuntu_linuxMatch13.10
ORcanonicalubuntu_linuxMatch14.04lts
Related
cve
cve
CVE-2013-6433
2014-06-02 15:55:10
CVE-2014-3632
2014-10-07 14:55:04
veracode
veracode
Privilege Escalation
2019-01-15 09:01:48
Information Disclosure
2019-05-02 04:58:09
Privilege Escalation
2019-01-15 09:02:09
prion
prion
Default configuration
2014-06-02 15:55:00
Design/Logic Flaw
2014-10-07 14:55:00
cvelist
cvelist
CVE-2013-6433
2014-06-02 15:00:00
CVE-2014-3632
2014-10-07 14:00:00
debiancve
debiancve
CVE-2013-6433
2014-06-02 15:55:10
CVE-2014-3632
2014-10-07 14:55:04
redhat
redhat
ubuntucve
ubuntucve
nessus
nessus
RHEL 6 : openstack-neutron (RHSA-2014:1339)
2024-04-24 00:00:00
Ubuntu 14.04 LTS : OpenStack Neutron vulnerabilities (USN-2255-1)
2014-06-26 00:00:00
nvd
nvd
CVE-2014-3632
2014-10-07 14:55:04
openvas
openvas
Ubuntu: Security Advisory (USN-2255-1)
2014-07-01 00:00:00
ubuntu
ubuntu
OpenStack Neutron vulnerabilities
2014-06-25 00:00:00
securityvulns
securityvulns
OpenStack multiple security vulnerabilities
2014-08-24 00:00:00
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.2%
Related for NVD:CVE-2013-6433