VulnerableCode Package Details - pkg:pypi/neutron@20.3.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-ydug-1dq5-aya1 Aliases: CVE-2023-3637 GHSA-r3jh-qhgj-gvr8	Uncontrolled Resource Consumption An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.	23.0.0.0b1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-ydug-1dq5-aya1
Aliases:
CVE-2023-3637
GHSA-r3jh-qhgj-gvr8

Uncontrolled Resource Consumption An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.

23.0.0.0b1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-qua4-h1r7-a7b7	openstack-neutron uncontrolled resource consumption flaw An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.	CVE-2022-3277 GHSA-w446-h7vg-wv3p

Vulnerability

Summary

Aliases

VCID-qua4-h1r7-a7b7

openstack-neutron uncontrolled resource consumption flaw An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.

CVE-2022-3277
GHSA-w446-h7vg-wv3p

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T22:34:36.721168+00:00	GitLab Importer	Affected by	VCID-ydug-1dq5-aya1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/neutron/CVE-2023-3637.yml	38.4.0
2026-04-11T23:53:41.146031+00:00	GitLab Importer	Affected by	VCID-ydug-1dq5-aya1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/neutron/CVE-2023-3637.yml	38.3.0
2026-04-02T23:56:47.719685+00:00	GitLab Importer	Affected by	VCID-ydug-1dq5-aya1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/neutron/CVE-2023-3637.yml	38.1.0
2026-04-02T16:59:04.579608+00:00	GHSA Importer	Fixing	VCID-qua4-h1r7-a7b7	https://github.com/advisories/GHSA-w446-h7vg-wv3p	38.1.0
2026-04-01T12:58:39.374376+00:00	GithubOSV Importer	Fixing	VCID-qua4-h1r7-a7b7	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-w446-h7vg-wv3p/GHSA-w446-h7vg-wv3p.json	38.0.0
2026-04-01T12:50:59.176834+00:00	GitLab Importer	Fixing	VCID-qua4-h1r7-a7b7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/neutron/CVE-2022-3277.yml	38.0.0