CVE-2014-3632

Currently unrated

Key Information:

Vendor: Openstack
Status: Neutron
Vendor: CVE Published:; 7 October 2014

Summary

The default configuration in a sudoers file in the Red Hat openstack-neutron package before 2014.1.2-4, as used in Red Hat Enterprise Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6, allows remote attackers to gain privileges via a crafted configuration file. NOTE: this vulnerability exists because of a CVE-2013-6433 regression.

References

http://rhn.redhat.com/errata/RHSA-2014-1339.html

vendor-advisoryx_refsource_REDHAT

Timeline

Vulnerability published
Oct 7, 2014
Vulnerability Reserved
May 14, 2014