CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7801 matches found

OSV•added 2018/09/10 7:29 p.m.•37 views

PYSEC-2018-94

Live-migrated instances are briefly able to inspect traffic for other instances on the same hypervisor. This brief window could be extended indefinitely if the instance's port is set administratively down prior to live-migration and kept down after the migration is complete. This is possible due ...

5.3CVSS3.5AI score0.01173EPSS

Exploits0References4

UbuntuCve•added 2018/09/10 7:29 p.m.•21 views

CVE-2018-14636

5.3CVSS6.1AI score0.01173EPSS

Exploits0References1

OSV•added 2018/09/10 7:29 p.m.•3 views

CVE-2018-14620

The OpenStack RabbitMQ container image insecurely retrieves the rabbitmqclusterer component over HTTP during the build stage. This could potentially allow an attacker to serve malicious code to the image builder and install in the resultant container image. Version of openstack-rabbitmq-container...

9.8CVSS5.8AI score0.00597EPSS

Exploits0References3

OSV•added 2018/09/10 7:29 p.m.•22 views

CVE-2018-14636

5.3CVSS5.3AI score0.01173EPSS

Exploits0References3

OSV•added 2018/09/10 7:29 p.m.•31 views

CVE-2018-14635

When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...

6.5CVSS6.3AI score0.02527EPSS

Exploits0References7

NVD•added 2018/09/10 7:29 p.m.•46 views

CVE-2018-14620

9.8CVSS5.9AI score0.00597EPSS

Exploits0References3

OSV•added 2018/09/10 7:29 p.m.•2 views

UBUNTU-CVE-2018-14636

5.3CVSS5.8AI score0.01173EPSS

Exploits0References2

OSV•added 2018/09/10 7:29 p.m.•3 views

UBUNTU-CVE-2018-14635

6.5CVSS5.8AI score0.02527EPSS

Exploits0References2

OSV•added 2018/09/10 7:29 p.m.•3 views

DEBIAN-CVE-2018-14635

6.5CVSS6.6AI score0.02527EPSS

Exploits0References1

OSV•added 2018/09/10 7:29 p.m.•2 views

DEBIAN-CVE-2018-14636

5.3CVSS5.3AI score0.01173EPSS

Exploits0References1

OSV•added 2018/09/10 7:29 p.m.•25 views

PYSEC-2018-93

6.5CVSS3.7AI score0.02527EPSS

Exploits0References8

NVD•added 2018/09/10 7:29 p.m.•42 views

CVE-2018-14635

6.5CVSS6.3AI score0.02527EPSS

Exploits0References7

Prion•added 2018/09/10 7:29 p.m.•20 views

Design/Logic Flaw

4CVSS6.3AI score0.02527EPSS

Exploits0References7Affected Software2

Cvelist•added 2018/09/10 7:0 p.m.•30 views

CVE-2018-14636

5.3CVSS5.2AI score0.01173EPSS

Exploits0References3

CVE•added 2018/09/10 7:0 p.m.•93 views

CVE-2018-14635

The CVE-2018-14635 vulnerability affects OpenStack Neutron’s ml2 Linux Bridge driver. The issue allows non-privileged tenants to create and attach ports without assigning an IP address, bypassing IP address validation. This can lead to a potential denial of service if an IP outside the allowed al...

6.5CVSS6.1AI score0.02527EPSS

Exploits0References7Affected Software1

Cvelist•added 2018/09/10 7:0 p.m.•20 views

CVE-2018-14620

4.7CVSS9.5AI score0.00597EPSS

Exploits0References3

CVE•added 2018/09/10 7:0 p.m.•54 views

CVE-2018-14636

The CVE-2018-14636 issue affects OpenStack Neutron components vulnerable to an eavesdropping risk during live migration. When live-migrated, the Open vSwitch integration bridge can remain connected to the guest being migrated, exposing traffic from all instances sharing the same OVS instance. The...

5.3CVSS5.1AI score0.01173EPSS

Exploits0References3Affected Software1

CVE•added 2018/09/10 7:0 p.m.•65 views

CVE-2018-14620

CVE-2018-14620 affects openstack-rabbitmq-container and openstack-containers shipped with Red Hat OpenStack Platform 12–14. Root cause: the rabbitmq_clusterer component is fetched over HTTP during docker build without integrity validation, enabling an attacker to inject malicious code into the im...

9.8CVSS9.4AI score0.00597EPSS

Exploits0References3Affected Software1