Vulnerability Details : CVE-2019-17134
Potential exploit
Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve information or issue configuration commands via simple HTTP requests to the Agent on port https/9443, because the cmd/agent.py gunicorn cert_reqs option is True but is supposed to be ssl.CERT_REQUIRED.
Vulnerability category: BypassGain privilege
Products affected by CVE-2019-17134
- cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
- cpe:2.3:a:opendev:octavia:*:*:*:*:*:openstack:*:*
- cpe:2.3:a:opendev:octavia:*:*:*:*:*:openstack:*:*
- cpe:2.3:a:opendev:octavia:*:*:*:*:*:openstack:*:*
Exploit prediction scoring system (EPSS) score for CVE-2019-17134
1.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 77 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2019-17134
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.4
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:P/A:N |
10.0
|
4.9
|
NIST | |
|
9.1
|
CRITICAL | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
3.9
|
5.2
|
NIST |
CWE ids for CVE-2019-17134
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
References for CVE-2019-17134
-
https://security.openstack.org/ossa/OSSA-2019-005.html
OpenStack Docs: OSSA-2019-005: Octavia Amphora-Agent not requiring Client-CertificatePatch;Vendor Advisory
-
https://access.redhat.com/errata/RHSA-2020:0721
RHSA-2020:0721 - Security Advisory - Red Hat Customer Portal
-
https://review.opendev.org/686546
review.opendev Code ReviewMailing List;Patch;Third Party Advisory
-
https://review.opendev.org/686543
Change I5619f5e4: Fix urgent amphora two-way auth security bug | review.opendev Code ReviewMailing List;Patch;Third Party Advisory
-
https://review.opendev.org/686545
Change I5619f5e4: Fix urgent amphora two-way auth security bug | review.opendev Code ReviewMailing List;Patch;Third Party Advisory
-
https://review.opendev.org/686544
Change I5619f5e4: Fix urgent amphora two-way auth security bug | review.opendev Code ReviewMailing List;Patch;Third Party Advisory
-
https://usn.ubuntu.com/4153-1/
USN-4153-1: Octavia vulnerability | Ubuntu security noticesThird Party Advisory
-
https://access.redhat.com/errata/RHSA-2019:3788
RHSA-2019:3788 - Security Advisory - Red Hat Customer Portal
-
https://storyboard.openstack.org/#!/story/2006660
StoryBoardExploit;Third Party Advisory
-
https://access.redhat.com/errata/RHSA-2019:3743
RHSA-2019:3743 - Security Advisory - Red Hat Customer Portal
-
https://review.opendev.org/686547
Change I5619f5e4: Fix urgent amphora two-way auth security bug | review.opendev Code ReviewMailing List;Patch;Third Party Advisory
-
https://review.opendev.org/686541
Change I5619f5e4: Fix urgent amphora two-way auth security bug | review.opendev Code ReviewMailing List;Patch;Third Party Advisory
Jump to