CVE-2017-12440 : Aodh as packaged in Openstack Ocata and Newton before change-ID I8fd11a7f9fe3c0e

Aodh as packaged in Openstack Ocata and Newton before change-ID I8fd11a7f9fe3c0ea5f9843a89686ac06713b7851 and before Pike-rc1 does not verify that trust IDs belong to the user when creating alarm action with the scheme trust+http, which allows remote authenticated users with knowledge of trust IDs where Aodh is the trustee to obtain a Keystone token and perform unspecified authenticated actions by adding an alarm action with the scheme trust+http, and providing a trust id where Aodh is the trustee.

Published 2017-08-18 14:29:00

Updated 2019-10-03 00:03:26

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2017-12440

Openstack » Openstack » Version: 07132017
cpe:2.3:a:openstack:openstack:07132017:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2017-12440

EPSS FAQ

0.62%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 67 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-12440

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
6.0	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:P	6.8	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.5	HIGH	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H	1.6	5.9	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-12440

CWE-306 Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-12440

https://access.redhat.com/errata/RHSA-2018:0315

RHSA-2018:0315 - Security Advisory - Red Hat Customer Portal
https://review.openstack.org/#/c/493826/

review.opendev Code Review
Issue Tracking;Patch;Vendor Advisory
http://www.debian.org/security/2017/dsa-3953
https://access.redhat.com/errata/RHSA-2017:3227

RHSA-2017:3227 - Security Advisory - Red Hat Customer Portal
https://bugs.launchpad.net/ossn/+bug/1649333

Bug #1649333 “Aodh can be used to launder Keystone trusts” : Bugs : OpenStack Security Notes
Issue Tracking;Patch;Third Party Advisory
http://www.securityfocus.com/bid/100455

Multiple OpenStack Products CVE-2017-12440 Security Bypass Vulnerability
Third Party Advisory;VDB Entry
https://review.openstack.org/#/c/493824/

Change I8fd11a7f: Don't allow the user to pass in a trust ID | review.opendev Code Review
Issue Tracking;Patch;Vendor Advisory
https://review.openstack.org/#/c/493823/

Change I8fd11a7f: Don't allow the user to pass in a trust ID | review.opendev Code Review
Issue Tracking;Vendor Advisory;Patch

Jump to

Vulnerability Details : CVE-2017-12440

Products affected by CVE-2017-12440

Exploit prediction scoring system (EPSS) score for CVE-2017-12440

CVSS scores for CVE-2017-12440

CWE ids for CVE-2017-12440

References for CVE-2017-12440