cbcvebase.
CVE-2015-3221
published 2015-08-26

CVE-2015-3221: OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to…

PriorityP423medium4CVSS 2.0
AVNACLAuSCNINAP
EXPLOIT
EPSS
11.34%
95.4th percentile
OpenStack Neutron before 2014.2.4 (juno) and 2015.1.x before 2015.1.1 (kilo), when using the IPTables firewall driver, allows remote authenticated users to cause a denial of service (L2 agent crash) by adding an address pair that is rejected by the ipset tool.

Affected

9 ranges
VendorProductVersion rangeFixed in
debianneutron< neutron 2015.1.0+2015.06.24.git61.bdf194a0e1-1 (bookworm)neutron 2015.1.0+2015.06.24.git61.bdf194a0e1-1 (bookworm)
openstackneutron>= 0 < 2015.1.0+2015.06.24.git61.bdf194a0e1-12015.1.0+2015.06.24.git61.bdf194a0e1-1
openstackneutron>= 0 < 2015.1.0+2015.06.24.git61.bdf194a0e1-12015.1.0+2015.06.24.git61.bdf194a0e1-1
openstackneutron>= 0 < 2015.1.0+2015.06.24.git61.bdf194a0e1-12015.1.0+2015.06.24.git61.bdf194a0e1-1
openstackneutron>= 0 < 2015.1.0+2015.06.24.git61.bdf194a0e1-12015.1.0+2015.06.24.git61.bdf194a0e1-1
openstackneutron>= 0 < 2014.2.42014.2.4
openstackneutron>= 2014.2 < 2014.2.42014.2.4
openstackneutron>= 2015.1.0 < 2015.1.12015.1.1
openstackneutron>= 2015.1.0 < 2015.1.12015.1.1

CVSS provenance

nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv4.0MEDIUM
vendor_debian4.0MEDIUM
vendor_redhat4.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.