Vulnerability DatabaseCVE-2015-3241
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2015-3241
Published:September 08, 2015
Updated:May 17, 2026
OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does not stop the migration process when the instance is deleted, which allows remote authenticated users to cause a denial of service (disk, network, and other resource consumption) by resizing and then deleting an instance.
Related Resources (15)
http://rhn.redhat.com/errata/RHSA-2015-1723.html
https://access.redhat.com/errata/RHSA-2015:1723
https://security.openstack.org/ossa/OSSA-2015-015.html
https://github.com/openstack/nova
https://access.redhat.com/errata/RHSA-2015:1898
http://rhn.redhat.com/errata/RHSA-2015-1898.html
http://www.securityfocus.com/bid/75372
https://github.com/openstack/ossa/blob/482576204dec96f580817b119e3166d71c757731/ossa/OSSA-2015-015.yaml
https://github.com/openstack/nova/commit/bf23643e36c8764b4bd532546a2cc04385fe0cff
https://github.com/openstack/nova/commit/7ab75d5b0b75fc3426323bef19bf436a258b9707
https://bugzilla.redhat.com/show_bug.cgi?id=1232782
https://nvd.nist.gov/vuln/detail/CVE-2015-3241
https://launchpad.net/bugs/1387543
https://access.redhat.com/security/cve/CVE-2015-3241
https://github.com/openstack/nova/commit/b5020a047fc487f35b76fc05f31e52665a1afda1
Do you need more information?
Contact Us
CVSS v3
Base Score:
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH
CVSS v2
Base Score:
6.8
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
EPSS
Base Score:
1.97