Vulnerability Description
An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible to create images with a URL such as 'http://localhost:22'. This could then allow an attacker to enumerate internal network details while appearing masked, since the scan would appear to originate from the Glance Image service.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openstack | Glance | <= mitaka |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/96988Third Party AdvisoryVDB Entry
- https://bugs.launchpad.net/ossn/+bug/1153614Third Party Advisory
- https://bugs.launchpad.net/ossn/+bug/1606495Third Party Advisory
- https://wiki.openstack.org/wiki/OSSN/OSSN-0078Vendor Advisory
- http://www.securityfocus.com/bid/96988Third Party AdvisoryVDB Entry
- https://bugs.launchpad.net/ossn/+bug/1153614Third Party Advisory
- https://bugs.launchpad.net/ossn/+bug/1606495Third Party Advisory
- https://wiki.openstack.org/wiki/OSSN/OSSN-0078Vendor Advisory
FAQ
What is CVE-2017-7200?
CVE-2017-7200 is a vulnerability with a CVSS score of 5.8 (MEDIUM). An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible to...
How severe is CVE-2017-7200?
CVE-2017-7200 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-7200?
Check the references section above for vendor advisories and patch information. Affected products include: Openstack Glance.