Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-10876

Опубликовано: 28 фев. 2019
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes where those security groups are present, because of an Open vSwitch (OVS) firewall KeyError. All Neutron deployments utilizing neutron-openvswitch-agent are affected.

Отчет

The pre-requisites for this vulnerability are not in Red Hat OpenStack prior to version 11, hence these versions are not affected.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat OpenStack Platform 10 (Newton)openstack-neutronNot affected
Red Hat OpenStack Platform 15 (Stein)openstack-neutronNot affected
Red Hat OpenStack Platform 8 (Liberty)openstack-neutronNot affected
Red Hat OpenStack Platform 9 (Mitaka)openstack-neutronNot affected
Red Hat OpenStack Platform 13.0 (Queens)openstack-neutronFixedRHSA-2019:093530.04.2019
Red Hat OpenStack Platform 14.0 (Rocky)openstack-neutronFixedRHSA-2019:087930.04.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20
https://bugzilla.redhat.com/show_bug.cgi?id=1695883openstack-neutron: DOS via broken port range merging in security group

EPSS

Процентиль: 70%
0.00649
Низкий

7.5 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-10876

CVSS3: 6.5
ubuntu
почти 7 лет назад

An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes where those security groups are present, because of an Open vSwitch (OVS) firewall KeyError. All Neutron deployments utilizing neutron-openvswitch-agent are affected.

nvd логотип

CVE-2019-10876

CVSS3: 6.5
nvd
почти 7 лет назад

An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated user may prevent Neutron from being able to configure networks on any compute nodes where those security groups are present, because of an Open vSwitch (OVS) firewall KeyError. All Neutron deployments utilizing neutron-openvswitch-agent are affected.

debian логотип

CVE-2019-10876

CVSS3: 6.5
debian
почти 7 лет назад

An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x ...

github логотип

GHSA-jr9m-v5qh-mh2j

CVSS3: 6.5
github
больше 3 лет назад

OpenStack Neutron overlapping security group rules prevents compute node network configuration

EPSS

Процентиль: 70%
0.00649
Низкий

7.5 High

CVSS3