CVE-2014-6414

OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
VendorProductVersion
openstackneutron
2013.2 ≤
𝑥
≤ 2013.2.4
openstackneutron
2014.1 ≤
𝑥
< 2014.1.2
openstackneutron
2014.2 ≤
𝑥
≤ 2014.2.4
canonicalubuntu_linux
14.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
neutron
bullseye (security)
2:17.2.1-0+deb11u1
fixed
bullseye
2:17.2.1-0+deb11u1
fixed
bookworm
2:21.0.0-7
fixed
sid
2:25.0.0-1
fixed
trixie
2:25.0.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
neutron
utopic
not-affected
trusty
Fixed 1:2014.1.3-0ubuntu1
released
precise
dne
lucid
dne
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2014-1686.html
http://rhn.redhat.com/errata/RHSA-2014-1785.html
http://rhn.redhat.com/errata/RHSA-2014-1786.html
http://secunia.com/advisories/62299
http://www.openwall.com/lists/oss-security/2014/09/15/5
http://www.ubuntu.com/usn/USN-2408-1
https://bugs.launchpad.net/neutron/+bug/1357379
http://rhn.redhat.com/errata/RHSA-2014-1686.html
http://rhn.redhat.com/errata/RHSA-2014-1785.html
http://rhn.redhat.com/errata/RHSA-2014-1786.html
http://secunia.com/advisories/62299
http://www.openwall.com/lists/oss-security/2014/09/15/5
http://www.ubuntu.com/usn/USN-2408-1
https://bugs.launchpad.net/neutron/+bug/1357379