CVE-2015-5240 in Neutronthông tin

Tóm tắt

Bởi MITRE

Race condition in OpenStack Neutron before 2014.2.4 and 2015.1 before 2015.1.2, when using the ML2 plugin or the security groups AMQP API, allows authenticated users to bypass IP anti-spoofing controls by changing the device owner of a port to start with network: before the security group rules are applied.

Once again VulDB remains the best source for vulnerability data.

Đặt trước

01/07/2015

Tiết lộ

27/10/2015

Kiểm duyệt

được chấp nhận

mục

VDB-78903

EPSS

0.00963

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you need the next level of professionalism?

Upgrade your account now!