7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.2%
The default configuration in a sudoers file in the Red Hat
openstack-neutron package before 2014.1.2-4, as used in Red Hat Enterprise
Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6, allows remote
attackers to gain privileges via a crafted configuration file. NOTE: this
vulnerability exists because of a CVE-2013-6433 regression.
Author | Note |
---|---|
jdstrand | RedHat specific |