CVE-2014-3517
CVSS V2 Medium 4.3
CVSS V3 None
Description
api/metadata/handler.py in OpenStack Compute (Nova) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2, when proxying metadata requests through Neutron, makes it easier for remote attackers to guess instance ID signatures via a brute-force attack that relies on timing differences in responses to instance metadata requests.
Overview
- CVE ID
- CVE-2014-3517
- Assigner
- secalert@redhat.com
- Vulnerability Status
- Modified
- Published Version
- 2014-08-07T11:13:34
- Last Modified Date
- 2023-02-13T00:40:31
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:* | 1 | OR | 2013.2 | 2013.2.4 |
| cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:* | 1 | OR | 2014.1 | 2014.1.2 |
| cpe:2.3:a:openstack:nova:2014.2.0:milestone1:*:*:*:*:*:* | 1 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:N/AC:M/Au:N/C:P/I:N/A:N
- Access Vector
- NETWORK
- Access Compatibility
- MEDIUM
- Authentication
- NONE
- Confidentiality Impact
- PARTIAL
- Integrity Impact
- NONE
- Availability Impact
- NONE
- Base Score
- 4.3
- Severity
- MEDIUM
- Exploitability Score
- 8.6
- Impact Score
- 2.9
References
| Reference URL | Reference Tags |
|---|---|
| http://www.openwall.com/lists/oss-security/2014/07/17/2 | Patch Third Party Advisory |
| https://access.redhat.com/errata/RHSA-2014:0940 | |
| https://access.redhat.com/errata/RHSA-2014:1084 | |
| https://access.redhat.com/security/cve/CVE-2014-3517 | |
| https://bugs.launchpad.net/nova/+bug/1325128 | Third Party Advisory |
| https://bugzilla.redhat.com/show_bug.cgi?id=1112499 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2014-3517 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3517 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-05-10 17:52:29 | Added to TrackCVE | |||
| 2022-12-02 00:09:51 | 2014-08-07T11:13Z | 2014-08-07T11:13:34 | CVE Published Date | updated |
| 2022-12-02 00:09:51 | 2018-11-15T20:03:53 | CVE Modified Date | updated | |
| 2022-12-02 00:09:51 | Analyzed | Vulnerability Status | updated | |
| 2023-02-02 21:04:21 | 2023-02-02T20:17:14 | CVE Modified Date | updated | |
| 2023-02-02 21:04:21 | Analyzed | Modified | Vulnerability Status | updated |
| 2023-02-02 21:04:21 | api/metadata/handler.py in OpenStack Compute (Nova) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2, when proxying metadata requests through Neutron, makes it easier for remote attackers to guess instance ID signatures via a brute-force attack that relies on timing differences in responses to instance metadata requests. | A side-channel timing attack flaw was found in Nova. An attacker could possibly use this flaw to guess valid instance ID signatures, giving them access to details of another instance, by analyzing the response times of requests for instance metadata. This issue only affected configurations that proxy metadata requests via Neutron. | Description | updated |
| 2023-02-02 21:04:28 | References | updated | ||
| 2023-02-13 01:05:03 | 2023-02-13T00:40:31 | CVE Modified Date | updated | |
| 2023-02-13 01:05:03 | A side-channel timing attack flaw was found in Nova. An attacker could possibly use this flaw to guess valid instance ID signatures, giving them access to details of another instance, by analyzing the response times of requests for instance metadata. This issue only affected configurations that proxy metadata requests via Neutron. | api/metadata/handler.py in OpenStack Compute (Nova) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2, when proxying metadata requests through Neutron, makes it easier for remote attackers to guess instance ID signatures via a brute-force attack that relies on timing differences in responses to instance metadata requests. | Description | updated |