HIGH🇬🇧 English

CVE-2014-3632

CVSS 7.6v2.0pub. 2014-10-07upd. 2026-05-06

The default configuration in a sudoers file in the Red Hat openstack-neutron package before 2014.1.2-4, as used in Red Hat Enterprise Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6, allows remote attackers to gain privileges via a crafted configuration file. NOTE: this vulnerability exists because of a CVE-2013-6433 regression.

oryginał EN
CVSS Vector
AV:N/AC:H/Au:N/C:C/I:C/A:C
  • Openstack Neutron

    APP
    Openstack
    2014.1 – 2014.1.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-38598CRITICAL9.1ten sam produkt

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the...

CVE-2015-8914CRITICAL9.1ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2021-20267HIGH7.1ten sam produkt

A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted pack...

CVE-2016-5363HIGH8.2ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2016-5362HIGH8.2ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...