What is CVE-2017-16239?

CVE-2017-16239 is a medium-severity vulnerability in Openstack Nova. CVSS score: 6.5/10. Published 2017-11-14.

How severe is CVE-2017-16239?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Openstack Nova

CVE-2017-16239

In OpenStack Nova through 14.0.9, 15.x through 15.0.7, and 16.x through 16.0.2, by rebuilding an instance, an authenticated user may be able to circumvent the Filter Scheduler bypassing imposed filters (for example, the ImagePropertiesFilt…

EPSS: 0.004 (60.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N.

Affected products

Openstack Nova — versions 15.0.0, 15.0.1, 15.0.2
N/a — versions n/a

References

cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)
cve@mitre.org (x_refsource_CONFIRM, Issue Tracking)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)

Frequently asked questions

What is CVE-2017-16239?: CVE-2017-16239 is a medium-severity vulnerability in Openstack Nova. CVSS score: 6.5/10. Published 2017-11-14.
How severe is CVE-2017-16239?: Medium severity. CVSS v3 base score is 6.5 out of 10.