Описание
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via (1) a crafted DHCP discovery message or (2) crafted non-IP traffic.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| bionic | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| cosmic | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| devel | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| disco | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| esm-infra/bionic | not-affected | 2:11.0.0~rc2-0ubuntu1 |
| esm-infra/xenial | not-affected | 2:8.4.0-0ubuntu4 |
| precise | DNE | |
| precise/esm | DNE |
Показывать по
Ссылки на источники
EPSS
6.4 Medium
CVSS2
8.2 High
CVSS3
Связанные уязвимости
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via (1) a crafted DHCP discovery message or (2) crafted non-IP traffic.
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via (1) a crafted DHCP discovery message or (2) crafted non-IP traffic.
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 thro ...
OpenStack Neutron Intended MAC-spoofing protection mechanism bypass
EPSS
6.4 Medium
CVSS2
8.2 High
CVSS3