CVE-2014-0187
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0049 (0.5%)
Percentil: 65.6%
EPSS: 2026-05-06
Afecta
openstack:neutroncanonical:ubuntu_linuxopensuse:opensuseDescripción técnica
The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and 2014.1 before 2014.1.1 allows remote authenticated users to bypass security group restrictions via an invalid CIDR in a security group rule, which prevents further rules from being applied.
Publicada: 28/4/2014, 14:09:06
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://lists.opensuse.org/opensuse-updates/2014-08/msg00035.html
- http://secunia.com/advisories/59533
- http://www.openwall.com/lists/oss-security/2014/04/22/8
- http://www.ubuntu.com/usn/USN-2255-1
- https://bugs.launchpad.net/neutron/+bug/1300785
- http://lists.opensuse.org/opensuse-updates/2014-08/msg00035.html
- http://secunia.com/advisories/59533
- http://www.openwall.com/lists/oss-security/2014/04/22/8