-
CVSS Score
-Basic Information
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| nova-lxd | pip | < 13.1.1 | 13.1.1 |
Miggo AIRoot Cause AnalysisThe commit diff shows the critical fix was adding 'host_name' assignment using get_vif_devname() in create_network(). Prior to 13.1.1, this value wasn't populated, leading to misnamed veth interfaces. Neutron's iptables rules depend on correct host-side veth names (like tap* devices), and the absence of this configuration allowed security bypass. The vulnerability is directly tied to this missing code path in the network device configuration function.
A Semantic Attack on Google Gemini - Read the Latest Research