Improper Authorization Affecting neutron package, versions [0,21.0.0.0rc1)


Severity

Recommended
0.0
medium
0
10

CVSS assessment made by Snyk's Security Team. Learn more

Threat Intelligence

Exploit Maturity
Proof of concept
EPSS
0.1% (43rd percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-PYTHON-NEUTRON-3031732
  • published23 Sept 2022
  • disclosed29 Aug 2022
  • creditUnknown

Introduced: 29 Aug 2022

CVE-2022-3277  (opens in a new tab)
CWE-285  (opens in a new tab)

How to fix?

Upgrade neutron to version 21.0.0.0rc1 or higher.

Overview

neutron is an OpenStack project to provide “network connectivity as a service” between interface devices (e.g., vNICs) managed by other OpenStack services (e.g., nova). It implements the Neutron API.

Affected versions of this package are vulnerable to Improper Authorization when a non-admin user tries to list security groups for project_id None, it will create a default security group for that project and returns an empty list to the caller.

PoC

openstack --os-cloud devstack security group list --project None
openstack --os-cloud devstack-admin security group list
# The API call that is made is essentially `GET /networking/v2.0/security-groups?project_id=None`

CVSS Scores

version 3.1