Default Security Group Bypass in PackStack Red Hat OpenStack 4.0

Default Security Group Bypass in PackStack Red Hat OpenStack 4.0

CVE-2014-0071 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

PackStack in Red Hat OpenStack 4.0 does not enforce the default security groups when deployed to Neutron, which allows remote attackers to bypass intended access restrictions and make unauthorized connections.

Learn more about our Web Application Penetration Testing UK.