Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the IPv6 addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations. Only deployments using the Open vSwitch driver are affected. Source: OpenStack project. Versions before openstack-neutron 15.3.3, openstack-neutron 16.3.1 and openstack-neutron 17.1.1 are affected.
CVSS Information
N/A
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
OpenStack 数据伪造问题漏洞
Vulnerability Description
OpenStack是美国国家航空航天局(National Aeronautics and Space Administration)和美国Rackspace公司合作研发的一个云平台管理项目。 Openstack Neutron 存在数据伪造问题漏洞,该漏洞源于在默认Open vSwitch防火墙规则中发现了一个缺陷,攻击者可通过发送精心设计的数据包,任何控制连接到虚拟交换机的服务器实例的人都可以模拟网络上其他系统的IPv6地址,从而导致拒绝服务。以下产品及型号会受到影响:openstack-neutron
CVSS Information
N/A
Vulnerability Type
N/A