CVE-2013-1865
published 2013-03-22CVE-2013-1865: OpenStack Keystone Folsom (2012.2) does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote…
medium6.8CVSS 3.1
AVNACMAuNCPIPAP
OpenStack Keystone Folsom (2012.2) does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| debian | keystone | — | — |
| openstack | folsom | — | — |
| openstack | keystone | >= 2012.2 < 2012.2.4 | 2012.2.4 |