CVE-2014-3708
published 2014-10-31CVE-2014-3708: OpenStack Compute (Nova) before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote authenticated users to cause a denial of service (CPU consumption) via an…
medium4CVSS 3.1
AVNACLAuSCNINAP
OpenStack Compute (Nova) before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote authenticated users to cause a denial of service (CPU consumption) via an IP filter in a list active servers API request.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nova | < nova 2014.1.3-6 (bookworm) | nova 2014.1.3-6 (bookworm) |
| openstack | nova | >= 0 < 2014.1.3-6 | 2014.1.3-6 |
| openstack | nova | >= 0 < 2014.1.3-6 | 2014.1.3-6 |
| openstack | nova | >= 0 < 2014.1.3-6 | 2014.1.3-6 |
| openstack | nova | >= 0 < 2014.1.3-6 | 2014.1.3-6 |
| openstack | nova | >= 0 < 2014.1.4 | 2014.1.4 |
| openstack | nova | >= 2014.1 < 2014.1.4 | 2014.1.4 |
| openstack | nova | >= 2014.2 < 2014.2.1 | 2014.2.1 |
| openstack | nova | >= 2014.2.0 < 2014.2.1 | 2014.2.1 |
| redhat | openstack | — | — |
CVSS provenance
nvd4.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM