Skip to main content

Os Vif

1 CVEs product

Monthly

CVE-2019-15753 PyPI CRITICAL PATCH Act Now

In OpenStack os-vif 1.15.x before 1.15.2, and 1.16.0, a hard-coded MAC aging time of 0 disables MAC learning in linuxbridge, forcing obligatory Ethernet flooding of non-local destinations, which both. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Os Vif
NVD
CVSS 3.0
9.1
EPSS
2.6%
EPSS 3% CVSS 9.1
CRITICAL PATCH Act Now

In OpenStack os-vif 1.15.x before 1.15.2, and 1.16.0, a hard-coded MAC aging time of 0 disables MAC learning in linuxbridge, forcing obligatory Ethernet flooding of non-local destinations, which both. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Os Vif
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy