What is CVE-2015-7713?

CVE-2015-7713 is a vulnerability in Openstack Nova, classified under CWE-254. Published 2015-10-29.

Is CVE-2015-7713 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Openstack Nova

CVE-2015-7713

OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by leveraging an instance that was running when…

EPSS: 0.015 (81.6th percentile) — read the EPSS interpretation.

Affected products

Openstack Nova
N/a — versions n/a

Weakness classification (CWE)

CWE-254

Public proof-of-concept exploits

Live-Hack-CVE/CVE-2015-7713

References

76960 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
RHSA-2015:2673 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
RHSA-2015:2684 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2015-7713?: CVE-2015-7713 is a vulnerability in Openstack Nova, classified under CWE-254. Published 2015-10-29.
Is CVE-2015-7713 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.