CVE-2021-40085

CVE-2021-40085 is an OpenStack Neutron vulnerability disclosed for OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. An authenticated attacker can reconfigure dnsmasq through a crafted extra_dhcp_opts value, enabling manipulation of DHCP server configuration. Affected c...

CVE-2021-20267

CVE-2021-20267 affects OpenStack Neutron when using the Open vSwitch driver. The flaw resides in Neutron’s default Open vSwitch firewall rules, allowing an attacker who controls a server instance connected to the virtual switch to impersonate other IPv6 addresses, potentially causing denial of se...

CVE-2022-3277

CVE-2022-3277 affects OpenStack Neutron; an uncontrolled resource consumption flaw allows a remote authenticated user to query security groups for an invalid project, creating resources unconstrained by quotas and potentially causing a denial of service. The issue is tied to the OpenStack Neutron...

CVE-2021-38598

CVE-2021-38598 affects OpenStack Neutron: OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allow hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. An attacker controlling a server instance connected to the virtual sw...

CVE-2019-10876

CVE-2019-10876 affects OpenStack Neutron: versions 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with overlapping port ranges, an authenticated user can trigger an Open vSwitch firewall KeyError, preventing Neutron from configuring networks on com...

CVE-2018-14635

The CVE-2018-14635 vulnerability affects OpenStack Neutron’s ml2 Linux Bridge driver. The issue allows non-privileged tenants to create and attach ports without assigning an IP address, bypassing IP address validation. This can lead to a potential denial of service if an IP outside the allowed al...

CVE-2014-3555

CVE-2014-3555 affects OpenStack Neutron. Vulnerable versions: Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2. A remote authenticated user can cause a denial of service (crash or extended firewall rule updates) by creating a large number of allowed address pairs. Remediati...

CVE-2019-9735

CVE-2019-9735 affects the OpenStack Neutron iptables security group driver. In affected releases (OpenStack Neutron before 10.0.8; 11.x before 11.0.7; 12.x before 12.0.6; 13.x before 13.0.3), setting a destination port in a security group rule together with a protocol that doesn’t support that op...

CVE-2021-40797

CVE-2021-40797 affects OpenStack Neutron routes middleware. An authenticated user can trigger a memory leak by sending API requests that reference nonexistent controllers, causing the API worker to consume increasing memory and potentially degrade performance or cause denial of service. Affected ...

CVE-2013-6433

The CVE-2013-6433 issue affects the Red Hat openstack-neutron package: its default configuration prior to 2013.2.3-7 does not properly set a rootwrap configuration file, enabling privilege escalation by an attacker via a crafted config. The impact is privilege escalation with network-exposed vect...

CVE-2014-0056

CVE-2014-0056 affects OpenStack Neutron l3-agent (2012.2 before 2013.2.3). The issue: tenant-id not checked when creating ports, allowing remote authenticated users to connect ports to the routers of arbitrary tenants via the device-id in a port-create command. CVSSv2 base score 2.1 (LOW), attack...

CVE-2015-3221

CVE-2015-3221 affects OpenStack Neutron (IPTables driver) where remote authenticated users can cause a denial of service (L2 agent crash) by adding an address pair that is rejected by ipset. Connected advisories (RHSA-2015:1680; SUSE-SU-2015:1890-1 and related SUSE/SUSE-SU advisories) indicate Ne...

CVE-2015-8914

The CVE-2015-8914 entry corresponds to an ICMPv6-spoofing bypass in OpenStack Neutron’s IPTables firewall. The vulnerable component is Neutron’s firewall rules (IPTables) on OpenStack Neutron before versions 7.0.4 and 8.0.0 through 8.1.0. Root cause: the ICMPv6-spoofing protection mechanism can b...

CVE-2014-4167

CVE-2014-4167 affects the OpenStack Neutron L3-agent, where an authenticated remote user can cause a denial of service by attaching an IPv6 private subnet to an L3 router. Affected releases include Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2. Exploitation results in an...

CVE-2015-5240

CVE-2015-5240 is a race-condition flaw in OpenStack Neutron prior to 2014.2.4 and 2015.1 prior to 2015.1.2 that affects the ML2 plugin or the security groups AMQP API. An authenticated user could bypass IP anti-spoofing/firewall checks by changing the owner of a port to start with network: after ...

CVE-2016-5362

CVE-2016-5362 affects OpenStack Neutron’s IPTables firewall feature. The vulnerability exists in the DHCP-spoofing protection mechanism, allowing remote attackers to bypass anti-spoof controls and potentially cause a denial of service or intercept traffic via a crafted DHCP discovery. Affected re...

CVE-2014-0187

CVE-2014-0187 affects OpenStack Neutron where openvswitch-agent could bypass security group rules by using an invalid CIDR in a security group rule, preventing subsequent rules from applying. The issue affected OpenStack Neutron releases prior to 2013.2.4 (and 2014.1 prior to 2014.1.1); multiple ...

CVE-2014-3632

The CVE-2014-3632 issue affects the OpenStack Neutron package in Red Hat Enterprise Linux OpenStack Platform 5.0 on RHEL6, where a default sudoers configuration in the openstack-neutron package before 2014.1.2-4 allows privilege escalation via a crafted configuration file. This is a regression li...

CVE-2014-4615

CVE-2014-4615 affects OpenStack components including PyCADF (0.5.0 and earlier), Ceilometer 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo. The issue allows remote authenticated users to read a message queue (v2/meters/http.reque...

CVE-2014-7821

OpenStack Neutron vulnerable to a denial-of-service via a crafted dns_nameservers value in DNS configuration. Affected products: OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1. Root cause: improper handling of the dns_nameservers parameter leads to crash when an authenticated user...

CVE-2017-7543

CVE-2017-7543 describes a race-condition in OpenStack Neutron that, after a minor overcloud update, resets to 0 both net.bridge.bridge-nf-call-ip6tables and net.bridge.bridge-nf-call-iptables, effectively disabling neutron security groups. This race can be triggered by an update, allowing an atta...

CVE-2014-6414

Summary: CVE-2014-6414 affects OpenStack Neutron; unauthenticated? or remote authenticated users could reset admin network attributes to default values due to insufficient access control in Neutron prior to 2014.2.4 (and before 2014.1.2 in 2014.1 line). This could lead to misconfiguration or deni...

CVE-2016-5363

CVE-2016-5363 affects OpenStack Neutron IPTables firewall: anti-spoofing protection bypass allows remote attackers to bypass MAC spoofing checks and potentially cause DoS or traffic interception via crafted DHCP or non-IP traffic. Affected: OpenStack Neutron (IPTables MAC spoofing protection) bef...

CVE-2018-14636

The CVE-2018-14636 issue affects OpenStack Neutron components vulnerable to an eavesdropping risk during live migration. When live-migrated, the Open vSwitch integration bridge can remain connected to the guest being migrated, exposing traffic from all instances sharing the same OVS instance. The...

CVE-2014-8153

The CVE-2014-8153 entry affects the L3 agent in OpenStack Neutron 2014.2.x before 2014.2.2 when using radvd 2.0+. A remote authenticated user can cause a denial of service (blocked router update processing) by creating eight routers and assigning an IPv6 non-provider subnet to each. Connected adv...