CVE-2018-14636

Published: Sep 10, 2018

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

5.3

MEDIUM

Description

Live-migrated instances are briefly able to inspect traffic for other instances on the same hypervisor. This brief window could be extended indefinitely if the instance's port is set administratively down prior to live-migration and kept down after the migration is complete. This is possible due to the Open vSwitch integration bridge being connected to the instance during migration. When connected to the integration bridge, all traffic for instances using the same Open vSwitch instance would potentially be visible to the migrated guest, as the required Open vSwitch VLAN filters are only applied post-migration. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3, 11.0.5 are vulnerable.

Vendor	Product	Versions
The Openstack Project	openstack-neutron	affected `13.0.0.0b2` affected `12.0.3` affected `11.0.5`

Weaknesses (CWE)

CWE-300

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

References

https://bugs.launchpad.net/neutron/+bug/1767422

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14636

x_refsource_CONFIRM

https://bugs.launchpad.net/neutron/+bug/1734320

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-14636

Description

Affected Products

Weaknesses (CWE)

CVSS v3.0 Details

References