← Back

CVE-2015-3241

nvd nist
Published: Sep 8, 2015Modified: May 6, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:L/Au:S/C:N/I:N/A:C
Exploitability: 8.0 / Impact: 6.9
Source: NVD

Description

OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.

Affected (2)

Products: Openstack: Nova
Openstack
1 product
Nova
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Openstack
Nova
From 2014.2 to 2014.2.3
Nova
From 2015.1.0 to 2015.1.1

Related CWEs

CWE-399
CWE-399

References (12)

Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party AdvisoryVDB Entry
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.