Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2018-14620 | First vendor Publication | 2018-09-10 |
| Vendor | Cve | Last vendor Modification | 2021-08-04 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | |||
|---|---|---|---|
| Overall CVSS Score | 9.8 | ||
| Base Score | 9.8 | Environmental Score | 9.8 |
| impact SubScore | 5.9 | Temporal Score | 9.8 |
| Exploitabality Sub Score | 3.9 | ||
| Attack Vector | Network | Attack Complexity | Low |
| Privileges Required | None | User Interaction | None |
| Scope | Unchanged | Confidentiality Impact | High |
| Integrity Impact | High | Availability Impact | High |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 7.5 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The OpenStack RabbitMQ container image insecurely retrieves the rabbitmq_clusterer component over HTTP during the build stage. This could potentially allow an attacker to serve malicious code to the image builder and install in the resultant container image. Version of openstack-rabbitmq-container and openstack-containers as shipped with Red Hat Openstack 12, 13, 14 are believed to be vulnerable. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14620 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-20 | Improper Input Validation |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
Sources (Detail)
| Source | Url |
|---|---|
| CONFIRM | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14620 |
| REDHAT | https://access.redhat.com/errata/RHSA-2018:2721 https://access.redhat.com/errata/RHSA-2018:2729 |
Alert History
| Date | Informations |
|---|---|
| 2021-08-10 00:23:05 |
|
| 2021-08-05 01:43:31 |
|
| 2021-08-05 01:27:43 |
|
| 2021-08-04 21:23:25 |
|
| 2021-05-04 13:09:29 |
|
| 2021-04-22 02:23:03 |
|
| 2020-05-23 01:07:42 |
|
| 2019-10-10 05:20:23 |
|
| 2018-11-16 17:19:07 |
|
| 2018-09-21 17:19:34 |
|
| 2018-09-19 17:19:52 |
|
| 2018-09-11 13:20:41 |
|
