Vulnerability Details CVE-2014-6414
OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.7%
CVSS Severity
CVSS v2 Score 4.0
References
- http://rhn.redhat.com/errata/RHSA-2014-1686.html
- http://rhn.redhat.com/errata/RHSA-2014-1785.html
- http://rhn.redhat.com/errata/RHSA-2014-1786.html
- http://secunia.com/advisories/62299
- http://www.openwall.com/lists/oss-security/2014/09/15/5
- http://www.ubuntu.com/usn/USN-2408-1
- https://bugs.launchpad.net/neutron/+bug/1357379
- http://rhn.redhat.com/errata/RHSA-2014-1686.html
- http://rhn.redhat.com/errata/RHSA-2014-1785.html
- http://rhn.redhat.com/errata/RHSA-2014-1786.html
- http://secunia.com/advisories/62299
- http://www.openwall.com/lists/oss-security/2014/09/15/5
- http://www.ubuntu.com/usn/USN-2408-1
- https://bugs.launchpad.net/neutron/+bug/1357379
Products affected by CVE-2014-6414
-
cpe:2.3:a:openstack:neutron:2013.2
-
cpe:2.3:a:openstack:neutron:2013.2.1
-
cpe:2.3:a:openstack:neutron:2013.2.2
-
cpe:2.3:a:openstack:neutron:2013.2.3
-
cpe:2.3:a:openstack:neutron:2013.2.4
-
cpe:2.3:a:openstack:neutron:2014.1
-
cpe:2.3:a:openstack:neutron:2014.1.1
-
cpe:2.3:a:openstack:neutron:2014.2
-
cpe:2.3:a:openstack:neutron:2014.2.1
-
cpe:2.3:a:openstack:neutron:2014.2.2
-
cpe:2.3:a:openstack:neutron:2014.2.3
-
cpe:2.3:a:openstack:neutron:2014.2.4
-
cpe:2.3:o:canonical:ubuntu_linux:14.04