CVE-2015-7944
HIGH7.5EPSS 19.0%ganeti - security update
Published: 8/18/2017Modified: 4/28/2026
Also known as:DEBIAN-CVE-2015-7944
Description
The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2, when used in SSL mode, allows remote attackers to cause a denial of service (resource consumption) via SSL parameter renegotiation.
Affected packages (2)
- Debian/ganetifrom 0, < 2.15.2-1
- Debian/ganetifrom 0, < 2.5.2-1+deb7u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |