NVD

Id
43950  
Name
CVE-2012-2101  
Description
Openstack Compute (Nova) Folsom, 2012.1, and 2011.3 does not limit the number of security group rules, which allows remote authenticated users with certain permissions to cause a denial of service (CPU and hard drive consumption) via a network request that triggers a large number of iptables rules.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2012-06-07  
Modified Date
2012-11-06  
Seq
2012-2101  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
220780 43950 CVE-2012-2101 FEDORA-2012-6365  View
220781 43950 CVE-2012-2101 FEDORA-2012-6273  View
220782 43950 CVE-2012-2101 USN-1438-1  View
220783 43950 CVE-2012-2101 nova-quotas-dos(75243)  View
220784 43950 CVE-2012-2101 https://bugs.launchpad.net/nova/+bug/969545  View
220785 43950 CVE-2012-2101 https://github.com/openstack/nova/commit/1f644d210557b1254f7c7b39424b09a45329ade7  View
220786 43950 CVE-2012-2101 https://github.com/openstack/nova/commit/8c8735a73afb16d5856f0aa6088e9ae406c52beb  View
220787 43950 CVE-2012-2101 https://github.com/openstack/nova/commit/a67db4586f70ed881d65e80035b2a25be195ce64  View
220788 43950 CVE-2012-2101 [openstack] 20120419 [OSSA 2012-005] No quota enforced on security group rules  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
26937 JVNDB-2012-002644 Openstack Compute (Nova) におけるサービス運用妨害 (CPU およびハードドライブの消費) の脆弱性 Openstack Compute (Nova) は、セキュリティグループのルールの数が制限されないため、サービス運用妨害 (CPU およびハードドライブの消費) 状態となる脆弱性が存在します。 CVE-2012-2101 55339 CVE-2012-2101 43950 3.5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-002644.html 2012-03-30 2012-09-04 View