An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| neutron(PyPI) | 19.0.0.0rc1 | 19.5.0 | N/A |
| neutron(PyPI) | 0 | 18.6.0 | N/A |
| neutron(PyPI) | 20.0.0.0rc1 | 20.3.0 | N/A |
CVSS Metrics
