Lucene search
HistoryOct 29, 2015 - 8:59 p.m.
CVE-2015-7713
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.005
Percentile
77.2%
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when the change was made.
Affected configurations
Node
openstacknovaRange2014.2–2014.2.4
ORopenstacknovaRange2015.1.0–2015.1.2
Related
redhat
redhat
(RHSA-2015:2684) Moderate: openstack-nova secuity and bug fix advisory
2015-12-21 18:32:35
(RHSA-2015:2673) Moderate: openstack-nova security and bug fix advisory
2015-12-21 16:34:22
(RHSA-2016:0013) Moderate: openstack-nova security and bug fix advisory
2016-01-07 20:40:48
debiancve
debiancve
CVE-2015-7713
2015-10-29 20:59:09
veracode
veracode
Authorization Bypass
2019-01-15 09:09:20
osv
osv
prion
prion
Design/Logic Flaw
2015-10-29 20:59:00
ubuntucve
ubuntucve
CVE-2015-7713
2015-10-29 00:00:00
cve
cve
CVE-2015-7713
2015-10-29 20:59:09
github
github
cvelist
cvelist
CVE-2015-7713
2015-10-29 20:00:00
ibm
ibm
nessus
nessus
Ubuntu 14.04 LTS : OpenStack Nova vulnerabilities (USN-3449-1)
2017-10-12 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3449-1)
2017-10-12 00:00:00
ubuntu
ubuntu
OpenStack Nova vulnerabilities
2017-10-11 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.005
Percentile
77.2%
Related for NVD:CVE-2015-7713