How severe is CVE-2019-9735?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.5 out of 10.

What type of vulnerability is CVE-2019-9735?

This is classified as CWE-755, which is a common weakness in software security.

CVE-2019-9735 - MEDIUM Severity | CVSS 6.5

Vulnerability Description

An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By setting a destination port in a security group rule along with a protocol that doesn't support that option (for example, VRRP), an authenticated user may block further application of security group rules for instances from any project/tenant on the compute hosts to which it's applied. (Only deployments using the iptables security group driver are affected.)

Related Vulnerabilities

CVE-2011-2336

MEDIUM

CVSS:6.5(Medium)

An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts.

CWE-7552011

CVE-2011-2807

MEDIUM

CVSS:6.5(Medium)

Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13.

CWE-7552011

CVE-2016-11034

MEDIUM

CVSS:6.5(Medium)

An issue was discovered on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. The decode function in Qjpeg in Qt 5.7 allows attackers to trigger a system crash via a malformed image. The Sams...

CWE-7552016

CVE-2017-9658

MEDIUM

CVSS:6.5(Medium)

Certain 802.11 network management messages have been determined to invoke wireless access point blacklisting security defenses when not required, which can necessitate intervention by hospital staff t...

CWE-7552017

CVE-2018-1269

MEDIUM

CVSS:6.5(Medium)

Cloud Foundry Loggregator, versions 89.x prior to 89.5 or 96.x prior to 96.1 or 99.x prior to 99.1 or 101.x prior to 101.9 or 102.x prior to 102.2, does not handle errors thrown while constructing cer...

CWE-7552018

CVE-2019-0144

MEDIUM

CVSS:6.5(Medium)

Unhandled exception in firmware for Intel(R) Ethernet 700 Series Controllers before version 7.0 may allow an authenticated user to potentially enable a denial of service via local access.

CWE-7552019