CVE-2013-2104
published 2014-01-21CVE-2013-2104: python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated…
medium5.5CVSS 3.1
AVNACLAuSCNIPAP
python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows remote authenticated users to (1) retain use of a token after it has expired, or (2) use a revoked token once it expires.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | keystone | < python-keystoneclient 1:0.2.5-1 (bookworm) | python-keystoneclient 1:0.2.5-1 (bookworm) |
| debian | python-keystoneclient | < python-keystoneclient 1:0.2.5-1 (bookworm) | python-keystoneclient 1:0.2.5-1 (bookworm) |
| openstack | python-keystoneclient | <= 0.2.3 | — |
| openstack | python-keystoneclient | — | — |
| openstack | python-keystoneclient | >= 0 < 1:0.2.5-1 | 1:0.2.5-1 |
| openstack | python-keystoneclient | >= 0 < 1:0.2.5-1 | 1:0.2.5-1 |
| openstack | python-keystoneclient | >= 0 < 1:0.2.5-1 | 1:0.2.5-1 |
| openstack | python-keystoneclient | >= 0 < 1:0.2.5-1 | 1:0.2.5-1 |
| openstack | python-keystoneclient | >= 0 < 0.2.4 | 0.2.4 |
CVSS provenance
nvd5.5MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:P
osv5.5MEDIUM