Lucene search
GoogleOSV:CVE-2021-38598HistoryAug 23, 2021 - 5:15 a.m.
CVE-2021-38598
2021-08-2305:15:08
Google
osv.dev
13
openstack neutron
hardware address impersonation
denial of service
traffic interception
netfilter-based platform
linuxbridge driver
OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the hardware addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations.
References
Related
osv
osv
PYSEC-2021-360
2021-08-23 05:15:00
OpenStack Neutron vulnerable to hardware address impersonation
2022-05-24 19:11:58
neutron vulnerabilities
2023-05-10 11:30:08
github
github
OpenStack Neutron vulnerable to hardware address impersonation
2022-05-24 19:11:58
cve
cve
CVE-2021-38598
2021-08-23 05:15:08
debiancve
debiancve
CVE-2021-38598
2021-08-23 05:15:08
prion
prion
Design/Logic Flaw
2021-08-23 05:15:00
cvelist
cvelist
CVE-2021-38598
2021-08-23 04:17:16
ubuntucve
ubuntucve
CVE-2021-38598
2021-08-23 00:00:00
redhatcve
redhatcve
CVE-2021-38598
2021-08-18 18:05:47
nvd
nvd
CVE-2021-38598
2021-08-23 05:15:08
openvas
openvas
Debian: Security Advisory (DSA-4983-1)
2021-10-12 00:00:00
Ubuntu: Security Advisory (USN-6067-1)
2023-05-11 00:00:00
nessus
nessus
Debian DSA-4983-1 : neutron - security update
2021-10-11 00:00:00
debian
debian
[SECURITY] [DSA 4983-1] neutron security update
2021-10-10 18:06:29
ubuntu
ubuntu
OpenStack Neutron vulnerabilities
2023-05-10 00:00:00