HIGH🇵🇱 Wersja polska

CVE-2014-3632

CVSS 7.6v2.0pub. 2014-10-07upd. 2026-05-06

The default configuration in a sudoers file in the Red Hat openstack-neutron package before 2014.1.2-4, as used in Red Hat Enterprise Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6, allows remote attackers to gain privileges via a crafted configuration file. NOTE: this vulnerability exists because of a CVE-2013-6433 regression.

CVSS Vector
AV:N/AC:H/Au:N/C:C/I:C/A:C
  • Openstack Neutron

    APP
    Openstack
    2014.1 – 2014.1.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-38598CRITICAL9.1ten sam produkt

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the...

CVE-2015-8914CRITICAL9.1ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2021-20267HIGH7.1ten sam produkt

A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted pack...

CVE-2016-5363HIGH8.2ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2016-5362HIGH8.2ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...