Lucene search
Veracode Vulnerability DatabaseVERACODE:31887HistorySep 01, 2021 - 2:31 a.m.
Denial Of Service (DoS)
2021-09-0102:31:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.001 Low
EPSS
Percentile
44.8%
neutron is vulnerable to denial of service. An authenticated user may send a malicious extra_dhcp_opts value to add arbitrary configuration to the dnsmasq process in order to crash the service, change parameters for other tenants sharing the same interface, or otherwise alter that daemons behavior.
References
www.openwall.com/lists/oss-security/2021/08/31/2
bugs.launchpad.net/neutron/+bug/1939733
launchpad.net/bugs/1939733
lists.debian.org/debian-lts-announce/2021/10/msg00005.html
lists.debian.org/debian-lts-announce/2022/05/msg00038.html
security.openstack.org/ossa/OSSA-2021-005.html
www.debian.org/security/2021/dsa-4983
Related
nessus
nessus
Debian DLA-2781-1 : neutron - LTS security update
2021-10-11 00:00:00
debian
debian
[SECURITY] [DLA 3027-1] neutron security update
2022-05-26 14:33:07
[SECURITY] [DLA 2781-1] neutron security update
2021-10-11 14:33:02
[SECURITY] [DSA 4983-1] neutron security update
2021-10-10 18:06:29
prion
prion
Design/Logic Flaw
2021-08-31 18:15:00
osv
osv
OpenStack Neutron vulnerable to authenticated attackers reconfiguring dnsmasq via crafted extra_dhcp_opts value
2022-05-24 19:12:33
neutron - security update
2022-05-26 00:00:00
neutron - security update
2021-10-10 00:00:00
debiancve
debiancve
CVE-2021-40085
2021-08-31 18:15:08
redhat
redhat
redhatcve
redhatcve
CVE-2021-40085
2021-08-31 19:04:40
ubuntucve
ubuntucve
CVE-2021-40085
2021-08-31 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3027-1)
2022-06-01 00:00:00
Debian: Security Advisory (DLA-2781-1)
2021-10-12 00:00:00
Debian: Security Advisory (DSA-4983-1)
2021-10-12 00:00:00
github
github
cve
cve
CVE-2021-40085
2021-08-31 18:15:08
nvd
nvd
CVE-2021-40085
2021-08-31 18:15:08
cvelist
cvelist
CVE-2021-40085
2021-08-31 17:32:24
ubuntu
ubuntu
OpenStack Neutron vulnerabilities
2023-05-10 00:00:00