CVE-2017-2637

EPSS 0.38%
Published 26.07.2018 12:29:00
Last modified 21.11.2024 03:23:52
Source secalert@redhat.com
Teams watchlist Login
Open Login

A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable libvirtd based live-migration. Libvirtd is deployed by default (by director) listening on 0.0.0.0 (all interfaces) with no-authentication or encryption. Anyone able to make a TCP connection to any compute host IP address, including 127.0.0.1, other loopback interface addresses, or in some cases possibly addresses that have been exposed beyond the management interface, could use this to open a virsh session to the libvirtd instance and gain control of virtual machine instances or possibly take over the host.

Affected products Warnungen 0 Metrics 4 CWE 1 References 11

Data is provided by the National Vulnerability Database (NVD)

Redhat ≫ Openstack Version7.0

Redhat ≫ Openstack Version8

Redhat ≫ Openstack Version9

Redhat ≫ Openstack Version10

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.38%	0.584

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	3.9	6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C
secalert@redhat.com	9.9	3.1	6	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

http://www.securityfocus.com/bid/98576

Third Party Advisory

VDB Entry

https://access.redhat.com/errata/RHSA-2017:1242

Vendor Advisory

https://access.redhat.com/errata/RHSA-2017:1504

Vendor Advisory

https://access.redhat.com/errata/RHSA-2017:1537

Vendor Advisory

https://access.redhat.com/errata/RHSA-2017:1546

Vendor Advisory

https://access.redhat.com/solutions/3022771