CVE-2012-2101
Ubuntu Security Notice USN-1438-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.
Openstack Compute (Nova) Folsom v2012.1 y v2011.3 no limitan el número de reglas de seguridad del grupo, lo que permite causar una denegación de servicio (excesivo consumo de CPU y de disco duro) a usuarios remotos autenticados con determinados permisos a través de una solicitud de red que provoca una gran número de reglas de iptables.
Dan Prince discovered that Nova did not enforce quotas for security groups and rules added to security groups. An authenticated user could exploit this to cause a denial of service.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-04-04 CVE Reserved
- 2012-05-03 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (12)
URL | Tag | Source |
---|---|---|
http://www.osvdb.org/81641 | Vdb Entry | |
https://bugs.launchpad.net/nova/+bug/969545 | X_refsource_confirm | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/75243 | Vdb Entry | |
https://github.com/openstack/nova/commit/1f644d210557b1254f7c7b39424b09a45329ade7 | X_refsource_confirm | |
https://github.com/openstack/nova/commit/8c8735a73afb16d5856f0aa6088e9ae406c52beb | X_refsource_confirm | |
https://github.com/openstack/nova/commit/a67db4586f70ed881d65e80035b2a25be195ce64 | X_refsource_confirm | |
https://lists.launchpad.net/openstack/msg10268.html | Mailing List |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079434.html | 2017-08-29 | |
http://lists.fedoraproject.org/pipermail/package-announce/2012-May/079551.html | 2017-08-29 | |
http://secunia.com/advisories/49034 | 2017-08-29 | |
http://secunia.com/advisories/49048 | 2017-08-29 | |
http://ubuntu.com/usn/usn-1438-1 | 2017-08-29 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Openstack Search vendor "Openstack" | Nova Search vendor "Openstack" for product "Nova" | 2011.3 Search vendor "Openstack" for product "Nova" and version "2011.3" | - |
Affected
| ||||||
Openstack Search vendor "Openstack" | Nova Search vendor "Openstack" for product "Nova" | 2012.1 Search vendor "Openstack" for product "Nova" and version "2012.1" | - |
Affected
| ||||||
Openstack Search vendor "Openstack" | Nova Search vendor "Openstack" for product "Nova" | folsom Search vendor "Openstack" for product "Nova" and version "folsom" | - |
Affected
|