{"url":"http://public2.vulnerablecode.io/api/packages/64231?format=json","purl":"pkg:pypi/neutron@20.0.0.0rc1","type":"pypi","namespace":"","name":"neutron","version":"20.0.0.0rc1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"20.3.0","latest_non_vulnerable_version":"2015.1.1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44615?format=json","vulnerability_id":"VCID-ecp9-x6p6-7fa2","summary":"openstack-neutron uncontrolled resource consumption flaw\nAn uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.","references":[{"reference_url":"https://bugs.launchpad.net/neutron/+bug/1988026","reference_id":"","reference_type":"","scores":[],"url":"https://bugs.launchpad.net/neutron/+bug/1988026"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2129193","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2129193"},{"reference_url":"https://github.com/openstack/neutron","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron"},{"reference_url":"https://github.com/openstack/neutron/commit/01fc2b9195f999df4d810df4ee63f77ecbc81f7e","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/01fc2b9195f999df4d810df4ee63f77ecbc81f7e"},{"reference_url":"https://github.com/openstack/neutron/commit/717e3e09556f1fb9a7a420863746fa785eb6c316","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/717e3e09556f1fb9a7a420863746fa785eb6c316"},{"reference_url":"https://github.com/openstack/neutron/commit/733ef4f2d8c2a3734c360d1c1dd3a6fcd600cb8c","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/733ef4f2d8c2a3734c360d1c1dd3a6fcd600cb8c"},{"reference_url":"https://github.com/openstack/neutron/commit/cbeee87fa44cd200d4997e02042098460167dce1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/cbeee87fa44cd200d4997e02042098460167dce1"},{"reference_url":"https://github.com/openstack/neutron/commit/d0e1b54fb1de932b2b30ab4269cf5789632df476","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/d0e1b54fb1de932b2b30ab4269cf5789632df476"},{"reference_url":"https://github.com/openstack/neutron/commit/fd7fb0e9d8c602380f54975367d935ab69e10c05","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/openstack/neutron/commit/fd7fb0e9d8c602380f54975367d935ab69e10c05"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3277","reference_id":"CVE-2022-3277","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3277"},{"reference_url":"https://github.com/advisories/GHSA-w446-h7vg-wv3p","reference_id":"GHSA-w446-h7vg-wv3p","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-w446-h7vg-wv3p"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/64234?format=json","purl":"pkg:pypi/neutron@20.3.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/neutron@20.3.0"}],"aliases":["CVE-2022-3277","GHSA-w446-h7vg-wv3p"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ecp9-x6p6-7fa2"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/neutron@20.0.0.0rc1"}