{
  "threat_severity" : "Moderate",
  "public_date" : "2014-08-15T00:00:00Z",
  "bugzilla" : {
    "description" : "openstack-neutron: Admin-only network attributes may be reset to defaults by non-privileged users",
    "id" : "1142012",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1142012"
  },
  "cvss" : {
    "cvss_base_score" : "4.0",
    "cvss_scoring_vector" : "AV:N/AC:L/Au:S/C:N/I:N/A:P",
    "status" : "verified"
  },
  "cwe" : "CWE-862",
  "details" : [ "OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.", "It was discovered that unprivileged users could in some cases reset admin-only network attributes to their default values. This could lead to unexpected behavior or in some cases result in a denial of service." ],
  "affected_release" : [ {
    "product_name" : "OpenStack 4 for RHEL 6",
    "release_date" : "2014-10-22T00:00:00Z",
    "advisory" : "RHSA-2014:1686",
    "cpe" : "cpe:/a:redhat:openstack:4::el6",
    "package" : "openstack-neutron-0:2013.2.4-5.el6ost"
  }, {
    "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
    "release_date" : "2014-11-03T00:00:00Z",
    "advisory" : "RHSA-2014:1785",
    "cpe" : "cpe:/a:redhat:openstack:5::el6",
    "package" : "openstack-neutron-0:2014.1.3-8.el6ost"
  }, {
    "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
    "release_date" : "2014-11-03T00:00:00Z",
    "advisory" : "RHSA-2014:1785",
    "cpe" : "cpe:/a:redhat:openstack:5::el6",
    "package" : "python-neutronclient-0:2.3.4-3.el6ost"
  }, {
    "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
    "release_date" : "2014-11-03T00:00:00Z",
    "advisory" : "RHSA-2014:1786",
    "cpe" : "cpe:/a:redhat:openstack:5::el7",
    "package" : "openstack-neutron-0:2014.1.3-7.el7ost"
  }, {
    "product_name" : "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
    "release_date" : "2014-11-03T00:00:00Z",
    "advisory" : "RHSA-2014:1786",
    "cpe" : "cpe:/a:redhat:openstack:5::el7",
    "package" : "python-neutronclient-0:2.3.4-3.el7ost"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2014-6414\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-6414" ],
  "name" : "CVE-2014-6414",
  "csaw" : false
}