HIGH🇵🇱 Wersja polska

CVE-2016-5362

CVSS 8.2v3.0pub. 2016-06-17upd. 2026-05-06

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
  • Openstack Neutron

    APP
    Openstack
    7.0.0 – 7.0.4 (bez)8.0.0 – 8.1.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoSFirewall
CWE
References

Related vulnerabilities

CVE-2021-38598CRITICAL9.1ten sam produkt

OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address impersonation when the...

CVE-2015-8914CRITICAL9.1ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2021-20267HIGH7.1ten sam produkt

A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted pack...

CVE-2016-5363HIGH8.2ten sam produkt

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to byp...

CVE-2014-3632HIGH7.6ten sam produkt

The default configuration in a sudoers file in the Red Hat openstack-neutron package before 2014.1.2-4, as use...