CVE-2014-0187
published 2014-04-28CVE-2014-0187: The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group…
PriorityP341critical9CVSS 2.0
AVNACLAuSCCICAC
EPSS
2.92%
85.3th percentile
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | neutron | < neutron 2014.1.2-1 (bookworm) | neutron 2014.1.2-1 (bookworm) |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | — | — |
| openstack | neutron | >= 0 < 2014.1.2-1 | 2014.1.2-1 |
| openstack | neutron | >= 0 < 2014.1.2-1 | 2014.1.2-1 |
| openstack | neutron | >= 0 < 2014.1.2-1 | 2014.1.2-1 |
| openstack | neutron | >= 0 < 2014.1.2-1 | 2014.1.2-1 |
| openstack | neutron | >= 0 < 1:2014.1-0ubuntu1.3 | 1:2014.1-0ubuntu1.3 |
| opensuse | opensuse | — | — |
CVSS provenance
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
osv9.0CRITICAL
vendor_debian9.0CRITICAL
vendor_redhat9.0CRITICAL
vendor_ubuntu7.6HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
OpenStack Neutron up to 2014.1 access control (USN-2255-1 / Nessus ID 74228)
vuldb·2026-05-12·CVSS 9.0
CVE-2014-0187 [CRITICAL] OpenStack Neutron up to 2014.1 access control (USN-2255-1 / Nessus ID 74228)
A vulnerability categorized as critical has been discovered in OpenStack Neutron up to 2014.1. The affected element is an unknown function. The manipulation results in improper access controls.
This vulnerability is cataloged as CVE-2014-0187. The attack may be launched remotely. There is no exploit available.
It is advisable to upgrade the affected component.
GHSA
GHSA-x3fg-cp39-r4h6: The openvswitch-agent process in OpenStack Neutron 2013
ghsa_unreviewed·2022-05-14
CVE-2014-0187 [HIGH] GHSA-x3fg-cp39-r4h6: The openvswitch-agent process in OpenStack Neutron 2013
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
OSV
neutron vulnerabilities
osv·2014-06-25·CVSS 7.6
CVE-2013-6433 [HIGH] neutron vulnerabilities
neutron vulnerabilities
Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Neutron
did not properly set up its sudo configuration. If a different flaw was
found in OpenStack Neutron, this vulnerability could be used to escalate
privileges. (CVE-2013-6433)
Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in
OpenStack Neutron did not properly perform input validation when creating
security group rules when specifying --remote-ip-prefix. A remote
authenticated attacker could exploit this to prevent application of
additional rules. (CVE-2014-0187)
Thiago Martins discovered that OpenStack Neutron would inappropriately
apply SNAT rules to IPv6 subnets when using the L3-agent. A remote
authenticated attacker could exploit this to prevent floating IPv4
addre
OSV
CVE-2014-0187: The openvswitch-agent process in OpenStack Neutron 2013
osv·2014-04-28·CVSS 9.0
CVE-2014-0187 [CRITICAL] CVE-2014-0187: The openvswitch-agent process in OpenStack Neutron 2013
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Ubuntu
OpenStack Neutron vulnerabilities
vendor_ubuntu·2014-06-25·CVSS 7.6
CVE-2013-6433 [HIGH] OpenStack Neutron vulnerabilities
Title: OpenStack Neutron vulnerabilities
Summary: Several security issues were fixed in OpenStack Neutron.
Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Neutron
did not properly set up its sudo configuration. If a different flaw was
found in OpenStack Neutron, this vulnerability could be used to escalate
privileges. (CVE-2013-6433)
Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in
OpenStack Neutron did not properly perform input validation when creating
security group rules when specifying --remote-ip-prefix. A remote
authenticated attacker could exploit this to prevent application of
additional rules. (CVE-2014-0187)
Thiago Martins discovered that OpenStack Neutron would inappropriately
apply SNAT rules to IPv6 subnets when using the L3-agen
Red Hat
openstack-neutron: security groups bypass through invalid CIDR
vendor_redhat·2014-04-22·CVSS 9.0
CVE-2014-0187 [CRITICAL] openstack-neutron: security groups bypass through invalid CIDR
openstack-neutron: security groups bypass through invalid CIDR
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Debian
CVE-2014-0187: neutron - The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 20...
vendor_debian·2014·CVSS 9.0
CVE-2014-0187 [CRITICAL] CVE-2014-0187: neutron - The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 20...
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Scope: local
bookworm: resolved (fixed in 2014.1.2-1)
bullseye: resolved (fixed in 2014.1.2-1)
forky: resolved (fixed in 2014.1.2-1)
sid: resolved (fixed in 2014.1.2-1)
trixie: resolved (fixed in 2014.1.2-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
bugzilla·2014-04-22·CVSS 9.0
CVE-2014-0187 [CRITICAL] CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR
OpenStack Security Advisory: 2014-014
CVE: CVE-2014-0187
Date: April 22, 2014
Title: Neutron security groups bypass through invalid CIDR
Reporters: Stephen Ma (HP) and Christoph Thiel (Deutsche Telekom)
Products: Neutron
Versions: 2013.1 to 2013.2.3, and 2014.1
Description:
Stephen Ma from Hewlett Packard and Christoph Thiel from Deutsche
Telekom reported a vulnerability in Neutron security groups. By creating
a security group rule with an invalid CIDR, an authenticated user may
break openvswitch-agent process, preventing further rules from being
applied on the host. Note: removal of the faulty rule is not enough, the
openvswitch-agent must be restarted. All Neutron setups using Open
vSwitch are affected.
Juno
Bugzilla
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR [fedora-20]
bugzilla·2014-04-22·CVSS 9.0
CVE-2014-0187 [CRITICAL] CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR [fedora-20]
CVE-2014-0187 openstack-neutron: security groups bypass through invalid CIDR [fedora-20]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
fedora-20 tracki
http://lists.opensuse.org/opensuse-updates/2014-08/msg00035.htmlhttp://secunia.com/advisories/59533http://www.openwall.com/lists/oss-security/2014/04/22/8http://www.ubuntu.com/usn/USN-2255-1https://bugs.launchpad.net/neutron/+bug/1300785http://lists.opensuse.org/opensuse-updates/2014-08/msg00035.htmlhttp://secunia.com/advisories/59533http://www.openwall.com/lists/oss-security/2014/04/22/8http://www.ubuntu.com/usn/USN-2255-1https://bugs.launchpad.net/neutron/+bug/1300785
2014-04-28
Published