8.2

CVSS Score

3.0

Basic Information

CVE ID

CVE-2016-5363

GHSA ID

GHSA-9pp3-cvmq-9p22

EPSS Score

0.78812%

CWE

Published

5/17/2022

Updated

5/14/2024

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2016-5363

CVE-2016-5363:
OpenStack Neutron Intended MAC-spoofing protection mechanism bypass

The IPTables firewall in OpenStack Neutron up to 7.0.4 and 8.x before 8.1.0 allows remote attackers to bypass an intended MAC-spoofing protection mechanism and consequently cause a denial of service or intercept network traffic via (1) a crafted DHCP discovery message or (2) crafted non-IP traffic.

(GitHub Advisory)

8.2

CVSS Score

3.0

Basic Information

CVE ID

CVE-2016-5363

GHSA ID

GHSA-9pp3-cvmq-9p22

EPSS Score

0.78812%

CWE

Published

5/17/2022

Updated

5/14/2024

KEV Status

Technology

Python

Technical Details

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
neutron	pip	<= 7.0.4	7.1.0
neutron	pip	>= 8.0.0, < 8.1.0	8.1.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis:

In progress

WAF Protection Rules

WAF Rule

T** IPT**l*s *ir*w*ll in Op*nSt**k N*utron up to *.*.* *n* *.x ***or* *.*.* *llows r*mot* *tt**k*rs to *yp*ss *n int*n*** M**-spoo*in* prot**tion m****nism *n* *ons*qu*ntly **us* * **ni*l o* s*rvi** or int*r**pt n*twork tr***i* vi* (*) * *r**t** ***P

Reasoning

No *n*lysis *v*il**l*

8.2

Basic Information

Concerned about an active attack path?

CVE-2016-5363: OpenStack Neutron Intended MAC-spoofing protection mechanism bypass

8.2

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

WAF Protection Rules

WAF Rule

Reasoning

CVE-2016-5363:
OpenStack Neutron Intended MAC-spoofing protection mechanism bypass

Vulnerability Intelligence
Miggo AI