GHSA-8q95-jj7p-x93x · Severity: medium · Ecosystem: pip — Openstack Neutron vulnerable to eavesdropping on private traffic
Live-migrated instances are briefly able to inspect traffic for other instances on the same hypervisor. This brief window could be extended indefinitely if the instance's port is set administratively down prior to live-migration and kept down after the migration is complete. This is possible due to the Open vSwitch integration bridge being connected to the instance during migration. When connected to the integration bridge, all traffic for instances using the same Open vSwitch instance would potentially be visible to the migrated guest, as the required Open vSwitch VLAN filters are only applied post-migration. Versions of openstack-neutron before 13.0.0.0b2, 12.0.3, 11.0.5 are vulnerable.
Conclusion & alert: CVE-2018-14636 is rated Moderate Risk (44.3/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 1.17%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.23% | 1.17% | +0.95% |
| 2 | 2025-03-30 | 0.72% | 0.23% | -0.49% |
| 3 | 2025-03-29 | — | 0.72% | — |
Full EPSS history (7 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 5.3 | 3.0 | MEDIUM |
|
1.6 | 3.6 | [email protected] |
| 5.3 | 3.0 | MEDIUM |
|
1.6 | 3.6 | [email protected] |
| 3.5 | 2.0 | LOW |
|
6.8 | 2.9 | [email protected] |
GHSA-8q95-jj7p-x93x · Severity: medium · Ecosystem: pip — Openstack Neutron vulnerable to eavesdropping on private traffic
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
low | CVE-2018-14636 low priority: Debian including 1 source packages (neutron), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. | https://security-tracker.debian.org/tracker/CVE-2018-14636 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2018-14636 |
suse
|
medium | CVE-2018-14636 severity moderate: SUSE including 11 source package names (openstack-neutron, openstack-neutron-dhcp-agent, …), 44 product×package rows across 4 product lines (HPE Helion OpenStack 8, SUSE OpenStack Cloud 7, SUSE OpenStack Cloud 8, SUSE OpenStack Cloud Crowbar 8): Known Not Affected 44. | https://www.suse.com/security/cve/CVE-2018-14636/ |
ubuntu
|
low | CVE-2018-14636 low priority: Ubuntu including 1 source packages (neutron), 19 status rows across 19 suites (bionic, cosmic, disco, eoan, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): not-affected 15, DNE 1, needed 1, needs-triage 1, released 1. | https://ubuntu.com/security/CVE-2018-14636 |
| URL | Tags |
|---|---|
| https://bugs.launchpad.net/neutron/+bug/1734320 | Issue Tracking Third Party Advisory |
| https://bugs.launchpad.net/neutron/+bug/1767422 | Issue Tracking Third Party Advisory |
| https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14636 | Issue Tracking Third Party Advisory |