CVE-2017-17051

CVE Database · CVE-2017-17051

CVE-2017-17051

· N/AModified

CVSS v3.1

N/A

EPSS

1.97%

Published

Dec 5, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An issue was discovered in the default FilterScheduler in OpenStack Nova 16.0.3. By repeatedly rebuilding an instance with new images, an authenticated user may consume untracked resources on a hypervisor host leading to a denial of service, aka doubled resource allocations. This regression was introduced with the fix for OSSA-2017-005 (CVE-2017-16239); however, only Nova stable/pike or later deployments with that fix applied and relying on the default FilterScheduler are affected.

Weaknesses (CWE)

CWE-400

Affected Products (1)

openstack · novavulnerable

References (10)

http://www.securityfocus.com/bid/102102

Third Party AdvisoryVDB Entry

https://launchpad.net/bugs/1732976

Issue TrackingThird Party Advisory

https://review.openstack.org/521662

Vendor Advisory

https://review.openstack.org/523214

Vendor Advisory

https://security.openstack.org/ossa/OSSA-2017-006.html

Vendor Advisory

http://www.securityfocus.com/bid/102102

Third Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs