Open Redirect in Openstack-nova
CVE-2021-3654
A vulnerability was found in openstack-nova's console proxy, noVNC. By crafting a malicious URL, noVNC could be made to redirect to any desired URL.
Vulnerability class: Open Redirect
EPSS: 0.872 (99.5th percentile) — read the EPSS interpretation.
Affected products
- N/a Openstack-nova — versions Affects - Nova: <21.2.3, >=22.0.0 <22.2.3, >=23.0.0 <23.0.3 | Fixed-In 21.2.3, 22.3.0, and 23.1.0
Weakness classification (CWE)
Public proof-of-concept exploits
References
- security.openstack.org/ossa/OSSA-2021-002.html
- bugs.launchpad.net/nova/+bug/1927677
- www.openwall.com/lists/oss-security/2021/07/29/2
- bugs.python.org/issue32084
- opendev.org/openstack/nova/commit/04d48527b62a35d912f93bc75613a6cca606df66
- opendev.org/openstack/nova/commit/8906552cfc2525a44251d4cf313ece61e57251eb
- bugzilla.redhat.com/show_bug.cgi
- GLSA-202305-02 (vendor-advisory)
Frequently asked questions
- What is CVE-2021-3654?
- CVE-2021-3654 is a vulnerability in Openstack-nova, classified under URL Redirection to Untrusted Site (Open Redirect). Published 2022-03-02.
- Is CVE-2021-3654 known to be exploited?
- 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.