CVE-2021-40085

CVE-2021-40085 is an OpenStack Neutron vulnerability disclosed for OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. An authenticated attacker can reconfigure dnsmasq through a crafted extra_dhcp_opts value, enabling manipulation of DHCP server configuration. Affected c...

CVE-2021-20267

CVE-2021-20267 affects OpenStack Neutron when using the Open vSwitch driver. The flaw resides in Neutron’s default Open vSwitch firewall rules, allowing an attacker who controls a server instance connected to the virtual switch to impersonate other IPv6 addresses, potentially causing denial of se...

CVE-2022-3277

CVE-2022-3277 affects OpenStack Neutron; an uncontrolled resource consumption flaw allows a remote authenticated user to query security groups for an invalid project, creating resources unconstrained by quotas and potentially causing a denial of service. The issue is tied to the OpenStack Neutron...

CVE-2021-38598

CVE-2021-38598 affects OpenStack Neutron: OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allow hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. An attacker controlling a server instance connected to the virtual sw...

CVE-2019-9735

CVE-2019-9735 affects the OpenStack Neutron iptables security group driver. In affected releases (OpenStack Neutron before 10.0.8; 11.x before 11.0.7; 12.x before 12.0.6; 13.x before 13.0.3), setting a destination port in a security group rule together with a protocol that doesn’t support that op...

CVE-2021-40797

CVE-2021-40797 affects OpenStack Neutron routes middleware. An authenticated user can trigger a memory leak by sending API requests that reference nonexistent controllers, causing the API worker to consume increasing memory and potentially degrade performance or cause denial of service. Affected ...