Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2017-17051

Date: December 5, 2017

An issue was discovered in the default FilterScheduler in OpenStack Nova 16.0.3. By repeatedly rebuilding an instance with new images, an authenticated user may consume untracked resources on a hypervisor host leading to a denial of service, aka doubled resource allocations. This regression was introduced with the fix for OSSA-2017-005 (CVE-2017-16239); however, only Nova stable/pike or later deployments with that fix applied and relying on the default FilterScheduler are affected.

Language: Python

Severity Score

Related Resources (11)

https://github.com/openstack/nova
https://security-tracker.debian.org/tracker/CVE-2017-17051
http://www.securityfocus.com/bid/102102
https://nvd.nist.gov/vuln/detail/CVE-2017-17051
https://review.openstack.org/521662
https://review.openstack.org/523214
https://github.com/openstack/nova/commit/fed660c1189fdf4159d97badfdc8c5b35ad14f23
https://security.openstack.org/ossa/OSSA-2017-006.html
https://github.com/openstack/nova/commit/25a1d78e83065c5bea5d8e0a017fd9d0914d41d9
https://launchpad.net/bugs/1732976
https://www.mend.io/vulnerability-database/CVE-2017-17051

Severity Score

Weakness Type (CWE)

Resource Management Errors

CWE-399

Uncontrolled Resource Consumption

CWE-400

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): SINGLE
Confidentiality (C): NONE
Integrity (I): NONE
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us