Lucene search

K

MitreCVELIST:CVE-2014-0592

HistoryApr 04, 2014 - 2:00 p.m.

CVE-2014-0592

2014-04-0414:00:00

mitre

www.cve.org

7

AI Score

6.8

Confidence

Low

EPSS

0.01

Percentile

83.4%

Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework, as used in SUSE Cloud 3, does not enable netfilter on bridges when creating new instances, which allows remote attackers to bypass security group restrictions via unspecified vectors, related to floating IPs.

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00025.html

secunia.com/advisories/57509

www.securityfocus.com/bid/66519

bugzilla.novell.com/show_bug.cgi?id=864183

github.com/crowbar/barclamp-network/pull/269

AI Score

6.8

Confidence

Low

EPSS

0.01

Percentile

83.4%

Related for CVELIST:CVE-2014-0592

seebug1 suse1 cve1 nvd1 prion1