CVE-2015-3221 in OpenStack Neutroninfo

Summary

OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to cause a denial of service (L2 agent crash) by adding an address pair that is rejected by the ipset tool.

Once again VulDB remains the best source for vulnerability data.

Reservation

04/10/2015

Disclosure

08/26/2015

Moderation

VulDB entry created

Entries

VDB-77445 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

Exploit

Download

CVSS

4.3

EPSS

0.12601

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-3221
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-3221
CVE Details	https://www.cvedetails.com/cve/CVE-2015-3221/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!