Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv2

CVE-2021-20267

Published: 28/05/2021 Updated: 07/10/2022
CVSS v2 Base Score: 5.5 | Impact Score: 4.9 | Exploitability Score: 8
CVSS v3 Base Score: 7.1 | Impact Score: 4.2 | Exploitability Score: 2.8
VMScore: 490
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:P
Subscribe to Neutron

Vulnerability Summary

A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the IPv6 addresses of other systems on the network, resulting in denial of service or in some cases possibly interception of traffic intended for other destinations. Only deployments using the Open vSwitch driver are affected. Source: OpenStack project. Versions before openstack-neutron 15.3.3, openstack-neutron 16.3.1 and openstack-neutron 17.1.1 are affected.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openstack neutron 18.0.0

openstack neutron

redhat openstack platform 16.1

redhat openstack platform 13.0

redhat openstack platform 10.0

redhat openstack platform 16.2

Vendor Advisories

Debian CVElist Bug Report Logs: neutron: CVE-2021-20267
Debian Bug report logs - #985104 neutron: CVE-2021-20267 Package: src:neutron; Maintainer for src:neutron is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 12 Mar 2021 20:39:02 UTC Severity: important Tags: security, upstream Found in version ne ...
Debian Security Advisories: DSA-4983-1 neutron -- security update
Pavel Toporkov discovered a vulnerability in Neutron, the OpenStack virtual network service, which allowed a reconfiguration of dnsmasq via crafted dhcp_extra_opts parameters For the oldstable distribution (buster), this problem has been fixed in version 2:1307+git20210927bace3d1890-0+deb10u1 This update also fixes CVE-2021-20267 For the s ...

Mailing Lists

Full Disclosure: [OSSA-2021-001] Neutron: Anti-spoofing bypass for Open vSwitch networks (CVE-2021-20267)
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> [OSSA-2021-001] Neutron: Anti-spoofing bypass for Open vSwitch networks (CVE-2021-20267) <!--X-Subject-Header-End--> <!--X-Hea ...

References

CWE-345https://bugzilla.redhat.com/show_bug.cgi?id=1934330https://security.openstack.org/ossa/OSSA-2021-001.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985104https://nvd.nist.govhttps://www.debian.org/security/2021/dsa-4983
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook