Known Vulnerabilities for Neutron by Openstack
Listed below are 10 of the newest known vulnerabilities associated with "Neutron" by "Openstack".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40797 | An issue was discovered in the routes middleware in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1... | 6.5 - MEDIUM | 2021-09-08 | 2021-09-15 |
| CVE-2021-40085 | An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attacke... | 6.5 - MEDIUM | 2021-08-31 | 2022-06-13 |
| CVE-2021-38598 | OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the linuxbridge dr... | 9.1 - CRITICAL | 2021-08-23 | 2023-08-08 |
| CVE-2021-20267 | A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in ... | 7.1 - HIGH | 2021-05-28 | 2022-10-07 |
| CVE-2019-10876 | An issue was discovered in OpenStack Neutron 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By creating two ... | 6.5 - MEDIUM | 2019-04-05 | 2021-08-04 |
| CVE-2019-9735 | An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 1... | 6.5 - MEDIUM | 2019-03-13 | 2021-08-04 |
| CVE-2018-14636 | Live-migrated instances are briefly able to inspect traffic for other instances on the same hypervisor. This brief window cou... | 5.3 - MEDIUM | 2018-09-10 | 2019-10-09 |
| CVE-2018-14635 | When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP a... | 6.5 - MEDIUM | 2018-09-10 | 2021-08-04 |
| CVE-2017-7543 | A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and... | 5.9 - MEDIUM | 2018-07-26 | 2023-02-12 |
| CVE-2016-5362 | The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended... | 8.2 - HIGH | 2016-06-17 | 2018-10-19 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Openstack | Neutron | juno3 | All | All | All |
| Application | Openstack | Neutron | juno2 | All | All | All |
| Application | Openstack | Neutron | juno1 | All | All | All |
| Application | Openstack | Neutron | juno-3 | All | All | All |
| Application | Openstack | Neutron | juno-2 | All | All | All |
| Application | Openstack | Neutron | juno-1 | All | All | All |
| Application | Openstack | Neutron | 9.4.1 | All | All | All |
| Application | Openstack | Neutron | 9.4.0 | All | All | All |
| Application | Openstack | Neutron | 9.3.1-2.1 | All | All | All |
| Application | Openstack | Neutron | 9.3.1 | All | All | All |
| Application | Openstack | Neutron | 9.3.0 | All | All | All |
| Application | Openstack | Neutron | 9.2.0 | All | All | All |
| Application | Openstack | Neutron | 9.1.1 | All | All | All |
| Application | Openstack | Neutron | 9.1.0 | All | All | All |
| Application | Openstack | Neutron | 9.0.0 | All | All | All |
| Application | Openstack | Neutron | 8.4.0 | All | All | All |
| Application | Openstack | Neutron | 8.3.0-11.1 | All | All | All |
| Application | Openstack | Neutron | 8.3.0 | All | All | All |
| Application | Openstack | Neutron | 8.2.0 | All | All | All |
| Application | Openstack | Neutron | 8.1.2 | All | All | All |