CVE-2012-2101
published 2012-06-07CVE-2012-2101: Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain…
low3.5CVSS 3.1
AVNACMAuSCNINAP
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nova | < nova 2012.1-2 (bookworm) | nova 2012.1-2 (bookworm) |
| openstack | nova | — | — |
| openstack | nova | — | — |
| openstack | nova | — | — |
| openstack | nova | >= 0 < 2012.1-2 | 2012.1-2 |
| openstack | nova | >= 0 < 2012.1-2 | 2012.1-2 |
| openstack | nova | >= 0 < 2012.1-2 | 2012.1-2 |
| openstack | nova | >= 0 < 2012.1-2 | 2012.1-2 |
| openstack | nova | >= 0 < 12.0.0a0 | 12.0.0a0 |
CVSS provenance
nvd3.5LOWAV:N/AC:M/Au:S/C:N/I:N/A:P
osv3.5LOW