Security Flaw in OpenStack Compute (Nova) by OpenStack
CVE-2015-7713

Currently unrated

Key Information:

Vendor
Openstack
Status
Vendor
CVE Published:
29 October 2015

Summary

A flaw in OpenStack Compute (Nova) versions prior to 2014.2.4 and 2015.1.2 allows remote attackers to exploit security group changes. This vulnerability enables attackers to bypass intended network restrictions by leveraging instances that were operational during the modification of security settings. As a result, unauthorized access could potentially be gained, compromising the security of the affected environment.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.