An issue exists in the routes middleware in OpenStack Neutron prior to 16.4.1, 17.x prior to 17.2.1, and 18.x prior to 18.1.1. By making API requests involving nonexistent controllers, an authenticated user may cause the API worker to consume increasing amounts of memory, resulting in API performance degradation or denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openstack neutron |