CVE-2015-7713
Description
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when the change was made.
Risk Information
Base Score
8.6
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
1.522
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2015-3280,CVE-2015-7713 are fixed in Python-nova 2014.2.4 | Windows |
| OpenStack Compute cloud infrastructure (USN-3449-1) python-nova_2014.1.5-0ubuntu1.7_all.deb | Linux |
| Vulnerabilities CVE-2015-3280,CVE-2015-7713 are fixed in Python-nova for linux 2014.2.4 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234