CVE-2015-8914

CWE-254 CWE-92310 documents7 sources

Severity

9.1CRITICAL

EPSS

6.7%

top 8.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openstack Neutron

Timeline

PublishedJun 17

Latest updateMay 14

Description

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a link-local source address.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages3 packages

▶NVDopenstack/neutron7.0.0 — 7.0.4+1

▶PyPIneutron8.0.0 — 8.1.1+1

▶Debianneutron< 2:8.1.2-1+3

🔴Vulnerability Details

OSV

OpenStack Neutron allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism↗2022-05-14

▶

GHSA

OpenStack Neutron allows remote attackers to bypass an intended ICMPv6-spoofing protection mechanism↗2022-05-14

▶

OSV

CVE-2015-8914: The IPTables firewall in OpenStack Neutron before 7↗2016-06-17

▶

CVEList

CVE-2015-8914: The IPTables firewall in OpenStack Neutron before 7↗2016-06-17

▶

📋Vendor Advisories

Red Hat

openstack-neutron: ICMPv6 source address spoofing vulnerability↗2015-12-15

▶

Debian

CVE-2015-8914: neutron - The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 ...↗2015

▶

💬Community

Bugzilla

CVE-2015-8914 CVE-2016-5362 CVE-2016-5363 openstack-neutron: various flaws [openstack-rdo]↗2016-06-23

▶

Bugzilla

CVE-2015-8914 CVE-2016-5362 CVE-2016-5363 openstack-neutron: various flaws [fedora-all]↗2016-06-23

▶

Bugzilla

CVE-2015-8914 openstack-neutron: ICMPv6 source address spoofing vulnerability↗2016-06-13

▶