{"id":"CVE-2022-3277","details":"An uncontrolled resource consumption flaw was found in openstack-neutron. This flaw allows a remote authenticated user to query a list of security groups for an invalid project. This issue creates resources that are unconstrained by the user's quota. If a malicious user were to submit a significant number of requests, this could lead to a denial of service.","aliases":["GHSA-w446-h7vg-wv3p"],"modified":"2026-02-11T13:26:10.053292Z","published":"2023-03-06T23:15:10.763Z","references":[{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2129193"},{"type":"REPORT","url":"https://bugs.launchpad.net/neutron/+bug/1988026"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2129193"},{"type":"FIX","url":"https://bugs.launchpad.net/neutron/+bug/1988026"},{"type":"FIX","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2129193"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openstack/neutron","events":[{"introduced":"0"},{"fixed":"93e7091a13f8471cfe77310802c12ede479e779f"},{"introduced":"23f956ab37618d5ec6b1b2bf0d50dea7a601513c"},{"fixed":"fc62d1ea8ef5024cd1b851dab2f765ba425279c3"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-3277.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}]}