N/A

An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.

N/A

未加控制的资源消耗(资源穷尽)

OpenStack 资源管理错误漏洞

OpenStack是美国美国国家航空航天局（NASA）的一个云平台管理项目。 OpenStack openstack-neutron存在安全漏洞，该漏洞源于其资源消耗不受控允许远程身份验证用户查询无效项目的安全组列表。该操作会创建不受用户配额约束的资源。如果恶意用户提交大量请求，可能会导致拒绝服务。

N/A

N/A