CVE-2017-16239

Current Description

In OpenStack Nova through 14.0.9, 15.x through 15.0.7, and 16.x through 16.0.2, by rebuilding an instance, an authenticated user may be able to circumvent the Filter Scheduler bypassing imposed filters (for example, the ImagePropertiesFilter or the IsolatedHostsFilter). All setups using Nova Filter Scheduler are affected. Because of the regression described in Launchpad Bug #1732947, the preferred fix is a 14.x version after 14.0.10, a 15.x version after 15.0.8, or a 16.x version after 16.0.3.

Referenced by CVEs:CVE-2017-17051

Basic Data

PublishedNovember 14, 2017
Last ModifiedOctober 03, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-noinfo
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:N/I:P/A:N
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score4.0
SeverityMEDIUM
Exploitability Score8.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

CVSS 3 - Version3.0
CVSS 3 - Vector StringCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 3 - Attack VectorNETWORK
CVSS 3 - Attack ComplexityLOW
CVSS 3 - Privileges RequiredLOW
CVSS 3 - User InteractionNONE
CVSS 3 - ScopeUNCHANGED
CVSS 3 - Confidentiality ImpactNONE
CVSS 3 - Integrity ImpactHIGH
CVSS 3 - Availability ImpactNONE
CVSS 3 - Base Score6.5
CVSS 3 - Base SeverityMEDIUM
Exploitability Score2.8
Base SeverityMEDIUM

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationOpenstackNova********14.0.9
    2.3ApplicationOpenstackNova15.0.0*******
    2.3ApplicationOpenstackNova15.0.1*******
    2.3ApplicationOpenstackNova15.0.2*******
    2.3ApplicationOpenstackNova15.0.3*******
    2.3ApplicationOpenstackNova15.0.4*******
    2.3ApplicationOpenstackNova15.0.5*******
    2.3ApplicationOpenstackNova15.0.6*******
    2.3ApplicationOpenstackNova15.0.7*******
    2.3ApplicationOpenstackNova16.0.0*******
    2.3ApplicationOpenstackNova16.0.1*******
    2.3ApplicationOpenstackNova16.0.2*******

Vulnerable Software List

VendorProductVersions
Openstack Nova *, 15.0.0, 15.0.1, 15.0.2, 15.0.3, 15.0.4, 15.0.5, 15.0.6, 15.0.7, 16.0.0, 16.0.1, 16.0.2

References

NameSourceURLTags
101950http://www.securityfocus.com/bid/101950BIDThird Party Advisory VDB Entry
RHSA-2018:0241https://access.redhat.com/errata/RHSA-2018:0241REDHAT
RHSA-2018:0314https://access.redhat.com/errata/RHSA-2018:0314REDHAT
RHSA-2018:0369https://access.redhat.com/errata/RHSA-2018:0369REDHAT
https://launchpad.net/bugs/1664931https://launchpad.net/bugs/1664931CONFIRMIssue Tracking
https://security.openstack.org/ossa/OSSA-2017-005.htmlhttps://security.openstack.org/ossa/OSSA-2017-005.htmlCONFIRMVendor Advisory
DSA-4056https://www.debian.org/security/2017/dsa-4056DEBIAN