{"vulnerability": "cve-2018-14635", "sightings": [{"uuid": "6c132a81-c47a-4b35-a5c1-50d9990eed07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-14635", "type": "seen", "source": "https://t.me/arpsyndicate/4598", "content": "#ExploitObserverAlert\n\nCVE-2018-14635\n\nDESCRIPTION: Exploit Observer has 12 entries in 2 file formats related to CVE-2018-14635. When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from outside of the allowed allocation pool. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3 and 11.0.5 are vulnerable.\n\nFIRST-EPSS: 0.002230000\nNVD-IS: 3.6\nNVD-ES: 2.8\nARPS-EXPLOITABILITY: 0.5854138", "creation_timestamp": "2024-04-12T11:04:21.000000Z"}]}