CVE-2014-4615
pycadf: token leak to message queue
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The notifier middleware in OpenStack PyCADF 0.5.0 and earlier, Telemetry (Ceilometer) 2013.2 before 2013.2.4 and 2014.x before 2014.1.2, Neutron 2014.x before 2014.1.2 and Juno before Juno-2, and Oslo allows remote authenticated users to obtain X_AUTH_TOKEN values by reading the message queue (v2/meters/http.request).
El middleware notificador en OpenStack PyCADF 0.5.0 y anteriores, Telemetry (Ceilometer) 2013.2 anterior a 2013.2.4 y 2014.x anterior a 2014.1.2, Neutron 2014.x anterior a 2014.1.2 y Juno anterior a Juno-2, y Oslo permite a usuarios remotos autenticados obtener valores X_AUTH_TOKEN mediante la lectura de la cola de mensajes (v2/meters/http.request).
It was found that authentication tokens were not properly sanitized from the message queue by the notifier middleware. An attacker with read access to the message queue could possibly use this flaw to intercept an authentication token and gain elevated privileges. Note that all services using the notifier middleware configured after the auth_token middleware pipeline were affected.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-06-24 CVE Reserved
- 2014-08-11 CVE Published
- 2024-03-31 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-201: Insertion of Sensitive Information Into Sent Data
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/60643 | Third Party Advisory | |
| http://secunia.com/advisories/60736 | Third Party Advisory | |
| http://secunia.com/advisories/60766 | Third Party Advisory | |
| http://www.openwall.com/lists/oss-security/2014/06/23/8 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2014/06/24/6 | Mailing List |
|
| http://www.openwall.com/lists/oss-security/2014/06/25/6 | Mailing List |
|
| http://www.securityfocus.com/bid/68149 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2014-1050.html | 2017-01-07 | |
| http://www.ubuntu.com/usn/USN-2311-1 | 2017-01-07 | |
| https://access.redhat.com/security/cve/CVE-2014-4615 | 2014-08-13 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1112945 | 2014-08-13 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Redhat Search vendor "Redhat" | Openstack Search vendor "Redhat" for product "Openstack" | 4.0 Search vendor "Redhat" for product "Openstack" and version "4.0" | - |
Affected
| ||||||
| Canonical Search vendor "Canonical" | Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux" | 14.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "14.04" | lts |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Neutron Search vendor "Openstack" for product "Neutron" | 2014.1 Search vendor "Openstack" for product "Neutron" and version "2014.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Neutron Search vendor "Openstack" for product "Neutron" | 2014.1.1 Search vendor "Openstack" for product "Neutron" and version "2014.1.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Neutron Search vendor "Openstack" for product "Neutron" | juno1 Search vendor "Openstack" for product "Neutron" and version "juno1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Oslo Search vendor "Openstack" for product "Oslo" | - | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | <= 0.5.0 Search vendor "Openstack" for product "Pycadf" and version " <= 0.5.0" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1 Search vendor "Openstack" for product "Pycadf" and version "0.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.1 Search vendor "Openstack" for product "Pycadf" and version "0.1.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.2 Search vendor "Openstack" for product "Pycadf" and version "0.1.2" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.3 Search vendor "Openstack" for product "Pycadf" and version "0.1.3" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.4 Search vendor "Openstack" for product "Pycadf" and version "0.1.4" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.5 Search vendor "Openstack" for product "Pycadf" and version "0.1.5" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.6 Search vendor "Openstack" for product "Pycadf" and version "0.1.6" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.7 Search vendor "Openstack" for product "Pycadf" and version "0.1.7" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.8 Search vendor "Openstack" for product "Pycadf" and version "0.1.8" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.1.9 Search vendor "Openstack" for product "Pycadf" and version "0.1.9" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.2 Search vendor "Openstack" for product "Pycadf" and version "0.2" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.2.1 Search vendor "Openstack" for product "Pycadf" and version "0.2.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.2.2 Search vendor "Openstack" for product "Pycadf" and version "0.2.2" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.3 Search vendor "Openstack" for product "Pycadf" and version "0.3" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.3.1 Search vendor "Openstack" for product "Pycadf" and version "0.3.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.4 Search vendor "Openstack" for product "Pycadf" and version "0.4" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Pycadf Search vendor "Openstack" for product "Pycadf" | 0.4.1 Search vendor "Openstack" for product "Pycadf" and version "0.4.1" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Telemetry \(ceilometer\) Search vendor "Openstack" for product "Telemetry \(ceilometer\)" | 2013.2 Search vendor "Openstack" for product "Telemetry \(ceilometer\)" and version "2013.2" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Telemetry \(ceilometer\) Search vendor "Openstack" for product "Telemetry \(ceilometer\)" | 2014.1 Search vendor "Openstack" for product "Telemetry \(ceilometer\)" and version "2014.1" | - |
Affected
| ||||||