CVE-2016-5362

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-5362
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5362.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-5362
Aliases
Downstream
Related
Published
2016-06-17T15:59:03.307Z
Modified
2026-03-15T21:45:04.763664Z
Severity
  • 8.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H CVSS Calculator
Summary
[none]
Details

The IPTables firewall in OpenStack Neutron before 7.0.4 and 8.0.0 through 8.1.0 allows remote attackers to bypass an intended DHCP-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via a crafted DHCP discovery message.

References

Affected packages

Git / github.com/openstack/neutron

Affected ranges

Type
GIT
Repo
https://github.com/openstack/neutron
Events
Introduced
6dcfe3a9362ae5fcf18e5cfb59663e43446cd59c
Fixed
b80fa23ac0b292db84df84855141eb16a4e0fec0
Introduced
3213eb124e40b130e174ac3a91067e2b196788dd
Last affected
a323769143001d67fd1b3b4ba294e59accd09e0e
Database specific 
{
    "versions": [
        {
            "introduced": "7.0.0"
        },
        {
            "fixed": "7.0.4"
        },
        {
            "introduced": "8.0.0"
        },
        {
            "last_affected": "8.1.0"
        }
    ]
}

Affected versions

7.*
7.0.0
7.0.0.0rc3
8.*
8.0.0
8.0.0.0b1
8.0.0.0b2
8.0.0.0b3
8.0.0.0rc1
8.0.0.0rc2
8.0.0.0rc3
8.1.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-5362.json"