CVE-2014-0056
published 2014-05-08CVE-2014-0056: The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug…
PriorityP416low2.1CVSS 2.0
AVNACHAuSCPINAN
EPSS
1.43%
69.7th percentile
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | neutron | < neutron 2013.2.2-4 (bookworm) | neutron 2013.2.2-4 (bookworm) |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | >= 0 < 2013.2.2-4 | 2013.2.2-4 |
| openstack | neutron | >= 0 < 2013.2.2-4 | 2013.2.2-4 |
| openstack | neutron | >= 0 < 2013.2.2-4 | 2013.2.2-4 |
| openstack | neutron | >= 0 < 2013.2.2-4 | 2013.2.2-4 |
| openstack | neutron | >= 2012.2 < 2013.2.3 | 2013.2.3 |
CVSS provenance
nvdv2.02.1LOWAV:N/AC:H/Au:S/C:P/I:N/A:N
osv2.1LOW
vendor_debian2.1LOW
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
OpenStack Neutron vulnerability
vendor_ubuntu·2014-05-05
CVE-2014-0056 OpenStack Neutron vulnerability
Title: OpenStack Neutron vulnerability
Summary: OpenStack Neutron would allow unintended access to other tenant networks.
Aaron Rosen discovered that OpenStack Neutron did not properly perform
authorization checks when creating ports when using plugins relying on the
l3-agent. A remote authenticated attacker could exploit this to access the
network of other tenants.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
openstack-neutron: insufficient authorization checks when creating ports
vendor_redhat·2014-03-28·CVSS 2.1
CVE-2014-0056 [LOW] CWE-285 openstack-neutron: insufficient authorization checks when creating ports
openstack-neutron: insufficient authorization checks when creating ports
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
Package: openstack-neutron (Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)) - Not affected
Package: openstack-quantum (Red Hat OpenStack Platform 3) - Will not fix
Debian
CVE-2014-0056: neutron - The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tena...
vendor_debian·2014·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056: neutron - The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tena...
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
Scope: local
bookworm: resolved (fixed in 2013.2.2-4)
bullseye: resolved (fixed in 2013.2.2-4)
forky: resolved (fixed in 2013.2.2-4)
sid: resolved (fixed in 2013.2.2-4)
trixie: resolved (fixed in 2013.2.2-4)
GHSA
OpenStack Neutron Improper Authentication vulnerability
ghsa·2022-05-17
CVE-2014-0056 [MEDIUM] CWE-287 OpenStack Neutron Improper Authentication vulnerability
OpenStack Neutron Improper Authentication vulnerability
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
OSV
OpenStack Neutron Improper Authentication vulnerability
osv·2022-05-17
CVE-2014-0056 [MEDIUM] OpenStack Neutron Improper Authentication vulnerability
OpenStack Neutron Improper Authentication vulnerability
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
OSV
CVE-2014-0056: The l3-agent in OpenStack Neutron 2012
osv·2014-05-08·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056: The l3-agent in OpenStack Neutron 2012
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [epel-6]
bugzilla·2014-03-28·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [epel-6]
CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field wh
Bugzilla
CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-19]
bugzilla·2014-03-28·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-19]
CVE-2014-0056 openstack-quantum: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-19]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when
Bugzilla
CVE-2014-0056 openstack-neutron: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-20]
bugzilla·2014-03-28·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056 openstack-neutron: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-20]
CVE-2014-0056 openstack-neutron: OpenStack Neutron: insufficient authorization checks when creating ports [fedora-20]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when
Bugzilla
CVE-2014-0056 openstack-neutron: insufficient authorization checks when creating ports
bugzilla·2014-02-10·CVSS 2.1
CVE-2014-0056 [LOW] CVE-2014-0056 openstack-neutron: insufficient authorization checks when creating ports
CVE-2014-0056 openstack-neutron: insufficient authorization checks when creating ports
The OpenStack project reports:
Title: Routers can be cross plugged by other tenants
Reporter: Aaron Rosen (VMWare)
Products: Neutron
Affects: 2012.2 versions up to 2013.2.2
Description:
Aaron Rosen from VMWare reported a vulnerability where Neutron fails to
perform proper authorization checks when creating ports. By choosing a
device id of a router from a different tenant when creating a port, an
authenticated user can access the network of other tenants. This affects
deployments of Neutron using plugins relying on the l3-agent.
Discussion:
Acknowledgements:
Red Hat would like to thank the OpenStack project for reporting this issue. Upstream acknowledges Aaron Rosen from VMware as the original repo
http://rhn.redhat.com/errata/RHSA-2014-0516.htmlhttp://www.openwall.com/lists/oss-security/2014/03/27/5http://www.ubuntu.com/usn/USN-2194-1https://bugs.launchpad.net/neutron/+bug/1243327http://rhn.redhat.com/errata/RHSA-2014-0516.htmlhttp://www.openwall.com/lists/oss-security/2014/03/27/5http://www.ubuntu.com/usn/USN-2194-1https://bugs.launchpad.net/neutron/+bug/1243327
2014-05-08
Published