Description
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.
CVSS vector
AV:N/AC:M/C:N/I:N/A:PExploitability: 6.8 | Impact: 2.9Confidentiality: None
Integrity: None
Affected Packages3 packages
▶Debiannova< 2012.1-2+3 🔴Vulnerability Details
4GHSAOpenstack Compute (Nova) Denial of service via network request that triggers large number of iptables rules↗2022-05-17 OSVOpenstack Compute (Nova) Denial of service via network request that triggers large number of iptables rules↗2022-05-17 CVEListCVE-2012-2101: Openstack Compute (Nova) Folsom, 2012↗2012-06-07 OSVCVE-2012-2101: Openstack Compute (Nova) Folsom, 2012↗2012-06-07 💥Exploits & PoCs
1Exploit-DBMcAfee Virtual Technician (MVT) 6.5.0.2101 - Insecure ActiveX Method↗2013-03-29 📋Vendor Advisories
2UbuntuNova vulnerability↗2012-05-03 DebianCVE-2012-2101: nova - Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of...↗2012 💬Community
4BugzillaCVE-2012-2101 openstack-nova: No quota enforced on security group rules [fedora-16]↗2012-04-19 BugzillaCVE-2012-2101 openstack-nova: No quota enforced on security group rules [fedora-17]↗2012-04-19 BugzillaCVE-2012-2101 openstack-nova: No quota enforced on security group rules [epel-6]↗2012-04-19 BugzillaCVE-2012-2101 openstack-nova: No quota enforced on security group rules↗2012-04-18