CVE-2017-18191
openstack-nova: Swapping encrypted volumes can allow an attacker to corrupt the LUKS header causing a denial of service in the host
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
An issue was discovered in OpenStack Nova 15.x through 15.1.0 and 16.x through 16.1.1. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and corrupt the LUKS header, resulting in a denial of service attack on the compute host. (The same code error also results in data loss, but that is not a vulnerability because the user loses their own data.) All Nova setups supporting encrypted volumes are affected.
Se ha descubierto un problema en OpenStack Nova en versiones 15.x hasta la 15.1.0 y 16.x hasta la 16.1.1. Al desconectar y volver a conectar un volumen cifrado, un atacante podría acceder al volumen en bruto subyacente y corromper la cabecera LUKS, resultando en un ataque de denegación de servicio (DoS) en el host de computación. (El mismo código de error resulta en pérdida de datos, pero no se trata de una vulnerabilidad porque el usuario pierde sus propios datos). Todas las configuraciones de Nova que soportan volúmenes cifrados están afectadas.
OpenStack Nova has a vulnerability in the handling of encrypted volumes. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and corrupt the LUKS header, resulting in a denial of service attack on the compute host. All Nova installations supporting encrypted volumes are affected.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-02-19 CVE Reserved
- 2018-02-19 CVE Published
- 2023-07-13 EPSS Updated
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/103104 | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://launchpad.net/bugs/1739593 | 2024-08-05 | |
| https://review.openstack.org/539893 | 2024-08-05 |
| URL | Date | SRC |
|---|---|---|
| http://openwall.com/lists/oss-security/2018/04/20/3 | 2019-10-03 | |
| https://security.openstack.org/ossa/OSSA-2018-001.html | 2019-10-03 |
| URL | Date | SRC |
|---|---|---|
| https://access.redhat.com/errata/RHSA-2018:2332 | 2019-10-03 | |
| https://access.redhat.com/errata/RHSA-2018:2714 | 2019-10-03 | |
| https://access.redhat.com/errata/RHSA-2018:2855 | 2019-10-03 | |
| https://access.redhat.com/security/cve/CVE-2017-18191 | 2018-10-02 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1546937 | 2018-10-02 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Openstack Search vendor "Openstack" | Nova Search vendor "Openstack" for product "Nova" | >= 15.0.0 <= 15.1.0 Search vendor "Openstack" for product "Nova" and version " >= 15.0.0 <= 15.1.0" | - |
Affected
| ||||||
| Openstack Search vendor "Openstack" | Nova Search vendor "Openstack" for product "Nova" | >= 16.0.0 <= 16.1.1 Search vendor "Openstack" for product "Nova" and version " >= 16.0.0 <= 16.1.1" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openstack Search vendor "Redhat" for product "Openstack" | 9 Search vendor "Redhat" for product "Openstack" and version "9" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openstack Search vendor "Redhat" for product "Openstack" | 10 Search vendor "Redhat" for product "Openstack" and version "10" | - |
Affected
| ||||||
| Redhat Search vendor "Redhat" | Openstack Search vendor "Redhat" for product "Openstack" | 12 Search vendor "Redhat" for product "Openstack" and version "12" | - |
Affected
| ||||||