CVE-2021-38598

CWE-290CWE-863Incorrect Authorization9 documents7 sources
Severity
9.1CRITICAL
EPSS
0.0%
top 89.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Openstack Neutron
Timeline
PublishedAug 23
Latest updateMay 10

Description

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge driver with ebtables-nft is used on a Netfilter-based platform. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the hardware addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages3 packages

NVDopenstack/neutron17.0.017.1.3+2
PyPIneutron17.0.017.1.3+1
Debianneutron< 2:17.2.1-0+deb11u1+3

🔴Vulnerability Details

5
OSV
neutron vulnerabilities2023-05-10
OSV
OpenStack Neutron vulnerable to hardware address impersonation2022-05-24
GHSA
OpenStack Neutron vulnerable to hardware address impersonation2022-05-24
CVEList
CVE-2021-38598: OpenStack Neutron before 162021-08-23
OSV
CVE-2021-38598: OpenStack Neutron before 162021-08-23

📋Vendor Advisories

3
Ubuntu
OpenStack Neutron vulnerabilities2023-05-10
Red Hat
openstack-neutron: Linuxbridge ARP filter bypass on Netfilter platforms2021-08-10
Debian
CVE-2021-38598: neutron - OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware ...2021
CVE-2021-38598 (CRITICAL CVSS 9.1) | OpenStack Neutron before 16.4.1 | cvebase.io