CVE-2013-6433
openstack neutron < 2013.2.3 - Privilege Escalation via Rootwrap Configuration
Title source: llmDescription
The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file.
References (4)
Core 4
Core References
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59533
Third Party Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2255-1
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0516.html
Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1039812
Scores
EPSS
0.0161
EPSS Percentile
82.0%
Details
CWE
CWE-264
Status
published
Products (3)
canonical/ubuntu_linux
13.10
canonical/ubuntu_linux
14.04
openstack/neutron
2013.1 - 2013.2.3
Published
Jun 02, 2014
Tracked Since
Feb 18, 2026