CVE-2014-3632
openstack neutron 2014.1-2014.1.2 - Remote Privilege Escalation via Sudoers Configuration
Title source: llmDescription
The default configuration in a sudoers file in the Red Hat openstack-neutron package before 2014.1.2-4, as used in Red Hat Enterprise Linux Open Stack Platform 5.0 for Red Hat Enterprise Linux 6, allows remote attackers to gain privileges via a crafted configuration file. NOTE: this vulnerability exists because of a CVE-2013-6433 regression.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-1339.html
Scores
EPSS
0.0121
EPSS Percentile
79.2%
Details
CWE
CWE-264
Status
published
Products (1)
openstack/neutron
2014.1 - 2014.1.2
Published
Oct 07, 2014
Tracked Since
Feb 18, 2026