Description
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command.
References (4)
Core 4
Core References
Issue Tracking x_refsource_confirm
https://bugs.launchpad.net/neutron/+bug/1243327
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2014/03/27/5
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0516.html
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2194-1
Scores
EPSS
0.0022
EPSS Percentile
43.9%
Details
CWE
CWE-287
Status
published
Products (16)
canonical/ubuntu_linux
13.10
openstack/neutron
2012.2
openstack/neutron
2012.2.1
openstack/neutron
2012.2.2
openstack/neutron
2012.2.3
openstack/neutron
2012.2.4
openstack/neutron
2013.1
openstack/neutron
2013.1.1
openstack/neutron
2013.1.2
openstack/neutron
2013.1.3
... and 6 more
Published
May 08, 2014
Tracked Since
Feb 18, 2026