Vulnerability DatabaseCVE-2014-7821
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2014-7821
Published:November 24, 2014
Updated:May 07, 2026
OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote authenticated users to cause a denial of service (crash) via a crafted dns_nameservers value in the DNS configuration.
Related Resources (9)
http://rhn.redhat.com/errata/RHSA-2014-1942.html
http://rhn.redhat.com/errata/RHSA-2014-1938.html
http://rhn.redhat.com/errata/RHSA-2015-0044.html
https://bugs.launchpad.net/neutron/+bug/1378450
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
http://secunia.com/advisories/62586
http://lists.openstack.org/pipermail/openstack-announce/2014-November/000303.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/98818
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155351.html
Do you need more information?
Contact Us
CVSS v3
Base Score:
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW
CVSS v2
Base Score:
4
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
Weakness Type (CWE)
Improper Input Validation
CWE-20
EPSS
Base Score:
1.86