6.3 Medium
AI Score
Confidence
Low
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.005 Low
EPSS
Percentile
75.9%
Darragh O’Reilly discovered that the Ubuntu packaging for OpenStack Neutron
did not properly set up its sudo configuration. If a different flaw was
found in OpenStack Neutron, this vulnerability could be used to escalate
privileges. (CVE-2013-6433)
Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in
OpenStack Neutron did not properly perform input validation when creating
security group rules when specifying --remote-ip-prefix. A remote
authenticated attacker could exploit this to prevent application of
additional rules. (CVE-2014-0187)
Thiago Martins discovered that OpenStack Neutron would inappropriately
apply SNAT rules to IPv6 subnets when using the L3-agent. A remote
authenticated attacker could exploit this to prevent floating IPv4
addresses from being attached throughout the cloud. (CVE-2014-4167)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.04 | noarch | python-neutron | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-common | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-dhcp-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-l3-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-lbaas-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-metadata-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-metering-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-plugin-bigswitch | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-plugin-bigswitch-agent | < 1:2014.1-0ubuntu1.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | neutron-plugin-brocade | < 1:2014.1-0ubuntu1.3 | UNKNOWN |