306 matches found
UBUNTU-CVE-2014-3555
OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service crash or long firewall rule updates by creating a large number of allowed address pairs...
PT-2014-5393 · Openstack +1 · Openstack Neutron +1
Name of the Vulnerable Software and Affected Versions: OpenStack Neutron versions before 2013.2.4 OpenStack Neutron versions 2014.x before 2014.1.2 OpenStack Neutron Juno before Juno-2 Description: The issue allows remote authenticated users to cause a denial of service by creating a large number...
CVE-2014-4167
CVE-2014-4167 affects the OpenStack Neutron L3-agent, where an authenticated remote user can cause a denial of service by attaching an IPv6 private subnet to an L3 router. Affected releases include Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2. Exploitation results in an...
PT-2014-5347 · Openstack +1 · Openstack Dashboard +1
Name of the Vulnerable Software and Affected Versions: OpenStack Dashboard Horizon versions prior to 2013.2.4 OpenStack Dashboard Horizon versions 2014.1 prior to 2014.1.2 OpenStack Dashboard Horizon Juno versions prior to Juno-2 Description: A cross-site scripting XSS issue exists in the Users...
PT-2014-5370 · Openstack +1 · Openstack Identity +1
Name of the Vulnerable Software and Affected Versions: OpenStack Identity Keystone versions before 2013.2.4 OpenStack Identity Keystone versions 2014.x before 2014.1.2 OpenStack Identity Keystone versions Juno before Juno-2 Description: The issue allows remote authenticated trustees to gain...
CVE-2014-4615
The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry Ceilometer 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo allows remote authenticated users to obtain XAUTHTOKEN values by reading the message queue...