CVE-2017-7200

{"id": "CVE-2017-7200", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2017-03-21T06:59:00.227", "references": [{"url": "http://www.securityfocus.com/bid/96988", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "https://bugs.launchpad.net/ossn/+bug/1153614", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://bugs.launchpad.net/ossn/+bug/1606495", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://wiki.openstack.org/wiki/OSSN/OSSN-0078", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/96988", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugs.launchpad.net/ossn/+bug/1153614", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugs.launchpad.net/ossn/+bug/1606495", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://wiki.openstack.org/wiki/OSSN/OSSN-0078", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible to create images with a URL such as 'http://localhost:22'. This could then allow an attacker to enumerate internal network details while appearing masked, since the scan would appear to originate from the Glance Image service."}, {"lang": "es", "value": "Un problema SSRF ha sido descubierto en OpenStack Glance en versiones anteriores a Newton. La funci\u00f3n 'copy_from' de Image Service API v1 permiti\u00f3 a un atacante realizar exploraciones de puerto de red enmascaradas. Con v1, es posible crear im\u00e1genes con una URL como 'http: // localhost: 22'. Esto podr\u00eda permitir a un atacante enumerar los detalles internos de la red mientras aparezca enmascarado, ya que el an\u00e1lisis parecer\u00eda originarse del servicio Glance Image."}], "lastModified": "2025-04-20T01:37:25.860", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:openstack:glance:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BFA0356D-3F1F-4F41-9069-6DAE56268CE5", "versionEndIncluding": "mitaka"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}