Medium Severity

IBM Security Bulletin: PowerVC is impacted by an OpenStack Neutron denial of service vulnerability (CVE-2018-14635)

Share this post:

Openstack Neutron is vulnerable to a denial of service, caused by improper validation of user-supplied input. By using specially-crafted content, a remote authenticated attacker could exploit this vulnerability to cause the application to crash.

CVE(s): CVE-2018-14635

Affected product(s) and affected version(s):

Affected Product Affected Version
IBM PowerVC Standard 1.3.3
IBM PowerVC Standard 1.4.0
IBM PowerVC Standard 1.4.1
IBM Cloud PowerVC Manager 1.3.3
IBM Cloud PowerVC Manager 1.4.0
IBM Cloud PowerVC Manager 1.4.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/794449
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/150091

More stories

Security Bulletin: Vulnerability in Apache Commons Compress affects IBM Spectrum Protect Plus (CVE-2019-12402).

Feb 22, 2020 7:00 pm EST | Medium Severity

A denial of service vulnerability in Apache Commons Compress affects IBM Spectrum Protect Plus. ...read more



Security Bulletin: Multiple vulnerabilities in Linux Kernel affect IBM Spectrum Protect Plus

Feb 22, 2020 7:00 pm EST | Medium Severity

There are multiple security vulnerabilities in the Linux Kernel that affect IBM Spectrum Protect Plus. ...read more