| CVE-2015-8914 |
critical |
9.1 |
9.1 |
|
|
|
4y ago |
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of s… |
| CVE-2016-5363 |
high |
8.2 |
8.2 |
|
|
|
10y ago |
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of serv… |
| CVE-2016-5362 |
high |
8.2 |
8.2 |
|
|
|
10y ago |
The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of ser… |
| CVE-2015-5240 |
low |
— |
3.5 |
|
|
|
11y ago |
Race condition in OpenStack Neutron before 2014.2.4 and 2015.1 before 2015.1.2, when using the ML2 plugin or the security groups AMQP API, allows remote authenticated users to bypass IP anti-spoofing… |
| CVE-2014-0056 |
low |
— |
2.1 |
|
|
|
4y ago |
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants … |
| CVE-2024-53916 |
unknown |
— |
— |
|
|
|
2y ago |
In OpenStack Neutron before 25.0.1, neutron/extensions/tagging.py can use an incorrect ID during policy enforcement. It does not apply the proper policy check for changing network tags. An unprivileg… |
| CVE-2023-3637 |
unknown |
— |
— |
|
|
|
3y ago |
An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates re… |
| CVE-2022-3277 |
unknown |
— |
— |
|
|
|
3y ago |
An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates re… |
| CVE-2021-40797 |
unknown |
— |
— |
|
|
|
4y ago |
An issue was discovered in the routes middleware in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. By making API requests involving nonexistent controllers, an authentic… |
| CVE-2021-40085 |
unknown |
— |
— |
|
|
|
4y ago |
An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attackers can reconfigure dnsmasq via a crafted extra_dhcp_opts value. |
| CVE-2021-38598 |
unknown |
— |
— |
|
|
|
4y ago |
OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending c… |
| CVE-2021-20267 |
unknown |
— |
— |
|
|
|
4y ago |
A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersona… |
| CVE-2018-14636 |
unknown |
— |
— |
|
|
|
4y ago |
Live-migrated instances are briefly able to inspect traffic for other instances on the same hypervisor. This brief window could be extended indefinitely if the instance's port is set administratively… |
| CVE-2019-10876 |
unknown |
— |
— |
|
|
|
4y ago |
An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two security groups with separate/overlapping port ranges, an authenticated us… |
| CVE-2019-9735 |
unknown |
— |
— |
|
|
|
4y ago |
An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By setting a destination port in a security… |
| CVE-2018-14635 |
unknown |
— |
— |
|
|
|
4y ago |
When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service cou… |
| CVE-2017-7543 |
unknown |
— |
— |
|
|
|
4y ago |
A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and 10.x before 10.0.2-1.1, where, following a minor overcloud update, neutro… |
| CVE-2013-2255 |
unknown |
— |
— |
|
|
|
4y ago |
HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates. |