Openstack Neutron 2013.2

CPE Details

Openstack Neutron 2013.2
openstack
neutron
2013.2
2014-04-29
09h42 +00:00
2014-04-29
17h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:openstack:neutron:2013.2:*:*:*:*:*:*:*

Informations

Vendor

openstack

Product

neutron

Version

2013.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2014-7821 2014-11-24 14h00 +00:00 OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote authenticated users to cause a denial of service (crash) via a crafted dns_nameservers value in the DNS configuration.
4
CVE-2014-6414 2014-10-02 12h00 +00:00 OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.
4
CVE-2014-4167 2014-07-11 12h00 +00:00 The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service (IPv4 address attachment outage) by attaching an IPv6 private subnet to a L3 router.
3.5
CVE-2013-6433 2014-06-02 13h00 +00:00 The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file.
7.6
CVE-2014-0056 2014-05-08 12h00 +00:00 The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
2.1
CVE-2014-0187 2014-04-28 12h00 +00:00 The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
9