10

CVE-2017-2637

A design flaw issue was found in the Red Hat OpenStack Platform director use of TripleO to enable libvirtd based live-migration. Libvirtd is deployed by default (by director) listening on 0.0.0.0 (all interfaces) with no-authentication or encryption. Anyone able to make a TCP connection to any compute host IP address, including 127.0.0.1, other loopback interface addresses, or in some cases possibly addresses that have been exposed beyond the management interface, could use this to open a virsh session to the libvirtd instance and gain control of virtual machine instances or possibly take over the host.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatOpenstack Version7.0
RedhatOpenstack Version8
RedhatOpenstack Version9
RedhatOpenstack Version10
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.78% 0.908
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 3.9 6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
secalert@redhat.com 9.9 3.1 6
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L
CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

http://www.securityfocus.com/bid/98576
Third Party Advisory
VDB Entry
https://access.redhat.com/errata/RHSA-2017:1242
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1504
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1537
Vendor Advisory
https://access.redhat.com/errata/RHSA-2017:1546
Vendor Advisory
https://access.redhat.com/solutions/3022771
Vendor Advisory
Mitigation
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2637
Vendor Advisory
Issue Tracking
Mitigation
https://wiki.openstack.org/wiki/OSSN/OSSN-0007
Vendor Advisory