Miggo Logo
Miggo Vulnerability Database
CVE-2017-5936

CVE-2017-5936: OpenStack Nova-LXD bypass security restrictions

7.5

CVSS Score
3.0

Basic Information

CVE ID
CVE-2017-5936
GHSA ID
GHSA-6xc7-4cx8-j3xc
EPSS Score
0.84574%
CWE
-
Published
5/13/2022
Updated
10/7/2024
KEV Status
No
Technology
TechnologyPython

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
nova-lxdpip< 13.1.113.1.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The commit diff shows the critical fix was adding 'host_name' assignment using get_vif_devname() in create_network(). Prior to 13.1.1, this value wasn't populated, leading to misnamed veth interfaces. Neutron's iptables rules depend on correct host-side veth names (like tap* devices), and the absence of this configuration allowed security bypass. The vulnerability is directly tied to this missing code path in the network device configuration function.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Op*nSt**k Nov*-LX* ***or* **.*.* us*s t** wron* n*m* *or t** v*t* p*irs w**n *pplyin* N*utron s**urity *roup rul*s *or inst*n**s, w*i** *llows r*mot* *tt**k*rs to *yp*ss int*n*** s**urity r*stri*tions.

Reasoning

T** *ommit *i** s*ows t** *riti**l *ix w*s ***in* '*ost_n*m*' *ssi*nm*nt usin* **t_vi*_**vn*m*() in *r**t*_n*twork(). Prior to **.*.*, t*is v*lu* w*sn't popul*t**, l***in* to misn*m** v*t* int*r****s. N*utron's ipt**l*s rul*s **p*n* on *orr**t *ost-s