CVE-2016-7797
published 2017-03-24CVE-2016-7797: Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clusterlabs | pacemaker | <= 1.1.14 | — |
| clusterlabs | pacemaker | >= 0 < 1.1.15~rc3-1 | 1.1.15~rc3-1 |
| clusterlabs | pacemaker | >= 0 < 1.1.15~rc3-1 | 1.1.15~rc3-1 |
| clusterlabs | pacemaker | >= 0 < 1.1.15~rc3-1 | 1.1.15~rc3-1 |
| clusterlabs | pacemaker | >= 0 < 1.1.15~rc3-1 | 1.1.15~rc3-1 |
| clusterlabs | pacemaker | >= 0 < 1.1.10+git20130802-1ubuntu2.4 | 1.1.10+git20130802-1ubuntu2.4 |
| clusterlabs | pacemaker | >= 0 < 1.1.14-2ubuntu1.2 | 1.1.14-2ubuntu1.2 |
| debian | pacemaker | < pacemaker 1.1.15~rc3-1 (bookworm) | pacemaker 1.1.15~rc3-1 (bookworm) |
| opensuse | leap | — | — |
| opensuse_project | leap | — | — |
| redhat | enterprise_linux_high_availability | — | — |
| redhat | enterprise_linux_resilient_storage | — | — |
| suse | linux_enterprise_high_availability | — | — |
| suse | linux_enterprise_software_development_kit | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.8HIGH