cbcvebase.

Openstack Keystone vulnerabilities

60 known vulnerabilities affecting openstack/keystone.

Total CVEs
60
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH20MEDIUM36LOW3

Vulnerabilities

Page 3 of 3
CVE-2013-1664P4MEDIUMCVSS 5.0≥ 0, < 2012.1.1-132013-04-03
CVE-2013-1664 [MEDIUM] CVE-2013-1664: The XML libraries for Python 3 The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute (Nova) Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service (resource consumption and crash) via an XML Entity Expansion (XEE) attack.
osv
CVE-2013-2255P4MEDIUMCVSS 5.9v20132019-11-01
CVE-2013-2255 [MEDIUM] CWE-295 CVE-2013-2255: HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.
ghsanvdosv
CVE-2018-20170P4MEDIUMCVSS 5.3≤ 14.0.12018-12-17
CVE-2018-20170 [MEDIUM] CWE-200 CVE-2018-20170: OpenStack Keystone through 14.0.1 has a user enumeration vulnerability because invalid usernames hav OpenStack Keystone through 14.0.1 has a user enumeration vulnerability because invalid usernames have much faster responses than valid ones for a POST /v3/auth/tokens request. NOTE: the vendor's position is that this is a hardening opportunity, and not necessarily an issue that should have an OpenStack Security Advisory
nvdosv
CVE-2020-12692P4MEDIUMCVSS 5.4fixed in 15.0.1v16.0.02020-05-07
CVE-2020-12692 [MEDIUM] CWE-294 CVE-2020-12692: An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then use it to reissue an OpenStack token an unlimited number of times.
ghsanvdosv
CVE-2014-5251P4MEDIUMCVSS 4.9v2014.1v2014.1.2+2 more2014-08-25
CVE-2014-5251 [MEDIUM] CWE-255 CVE-2014-5251: The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before J The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 stores timestamps with the incorrect precision, which causes the expiration comparison for tokens to fail and allows remote authenticated users to retain access via an expired token.
ghsanvdosv
CVE-2014-5253P4MEDIUMCVSS 4.9v2014.1v2014.1.2+2 more2014-08-25
CVE-2014-5253 [MEDIUM] CWE-255 CVE-2014-5253: OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly re OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access via a domain-scoped token for that domain.
ghsanvdosv
CVE-2012-3542P4MEDIUMCVSS 5.8≥ 0, < 2012.12022-05-17
CVE-2012-3542 [MEDIUM] CWE-284 OpenStack Keystone Allows Remote User Account Creation OpenStack Keystone Allows Remote User Account Creation OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allows remote attackers to add an arbitrary user to an arbitrary tenant via a request to update the user's default tenant to the administrative API. NOTE: this identifier was originally incorrectly assigned to an open redirect issue, but the correct identifier f
ghsaosv
CVE-2013-2014P4MEDIUMCVSS 5.0≥ 2013, < 2013.12014-06-02
CVE-2013-2014 [MEDIUM] CWE-20 CVE-2013-2014: OpenStack Identity (Keystone) before 2013.1 allows remote attackers to cause a denial of service (me OpenStack Identity (Keystone) before 2013.1 allows remote attackers to cause a denial of service (memory consumption and crash) via multiple long requests.
ghsanvdosv
CVE-2013-0247P4MEDIUMCVSS 5.0≥ 2012.1, ≤ 2012.1.3≥ 2012.2, ≤ 2012.2.3+1 more2013-02-24
CVE-2013-0247 [MEDIUM] CWE-399 CVE-2013-0247: OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and earlier, and Grizzly grizzly-2 an OpenStack Keystone Essex 2012.1.3 and earlier, Folsom 2012.2.3 and earlier, and Grizzly grizzly-2 and earlier allows remote attackers to cause a denial of service (disk consumption) via many invalid token requests that trigger excessive generation of log entries.
nvdosv
CVE-2014-2237P4MEDIUMCVSS 5.0v2013.1v2013.1.1+4 more2014-04-01
CVE-2014-2237 [MEDIUM] CWE-264 CVE-2014-2237: The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through 2013.2.2, and icehouse before icehouse-3, when issuing a trust token with impersonation enabled, does not include this token in the trustee's token-index-list, which prevents the token from being invalidated by bulk token revocation and allows the trus
ghsanvdosv
CVE-2016-4911P4MEDIUMCVSS 4.3≥ 9.0.0, < 9.0.12022-05-17
CVE-2016-4911 [MEDIUM] CWE-284 OpenStack Identity Keystone Improper Access Control OpenStack Identity Keystone Improper Access Control The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrictions by rescoping a token.
ghsaosv
CVE-2012-4457P4MEDIUMCVSS 4.0≥ 2012.1, < 2012.1.2v2012.22012-10-09
CVE-2012-4457 [MEDIUM] CWE-287 CVE-2012-4457: OpenStack Keystone Essex before 2012.1.2 and Folsom before folsom-3 does not properly handle authori OpenStack Keystone Essex before 2012.1.2 and Folsom before folsom-3 does not properly handle authorization tokens for disabled tenants, which allows remote authenticated users to access the tenant's resources by requesting a token for the tenant.
ghsanvdosv
CVE-2012-5563P4MEDIUMCVSS 4.9≥ 0, < 8.0.02022-05-17
CVE-2012-5563 [MEDIUM] CWE-324 OpenStack Keystone Insufficient token expiration OpenStack Keystone Insufficient token expiration OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not properly implement token expiration, which allows remote authenticated users to bypass intended authorization restrictions by creating new tokens through token chaining. NOTE: this issue exists because of a CVE-2012-3426 regression.
ghsaosv
CVE-2012-4413P4MEDIUMCVSS 4.0v2012.1.32012-09-18
CVE-2012-4413 [MEDIUM] CWE-264 CVE-2012-4413: OpenStack Keystone 2012.1.3 does not invalidate existing tokens when granting or revoking roles, whi OpenStack Keystone 2012.1.3 does not invalidate existing tokens when granting or revoking roles, which allows remote authenticated users to retain the privileges of the revoked roles.
ghsanvdosv
CVE-2014-3621P4MEDIUMCVSS 4.0≥ 2013.2, < 2013.2.3≥ 2014.1, < 2014.1.2.12014-10-02
CVE-2014-3621 [MEDIUM] CWE-200 CVE-2014-3621: The catalog url replacement in OpenStack Identity (Keystone) before 2013.2.3 and 2014.1 before 2014. The catalog url replacement in OpenStack Identity (Keystone) before 2013.2.3 and 2014.1 before 2014.1.2.1 allows remote authenticated users to read sensitive configuration options via a crafted endpoint, as demonstrated by "$(admin_token)" in the publicurl endpoint field.
ghsanvdosv
CVE-2015-3646P4MEDIUMCVSS 4.0≥ 2014.1, < 2014.1.5≥ 2014.2.0, < 2014.2.42015-05-12
CVE-2015-3646 [MEDIUM] CWE-200 CVE-2015-3646: OpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before 2014.2.4 logs the backend_argument OpenStack Identity (Keystone) before 2014.1.5 and 2014.2.x before 2014.2.4 logs the backend_argument configuration option content, which allows remote authenticated users to obtain passwords and other sensitive backend information by reading the Keystone logs.
ghsanvdosv
CVE-2017-15881P4MEDIUM≥ 0, < 4.0.0-beta72017-11-16
CVE-2017-15881 [MEDIUM] CWE-79 Cross-Site Scripting in keystone Cross-Site Scripting in keystone Versions of `keystone` prior to 4.0.0 are vulnerable to Cross-Site Scripting (XSS). The package fails to properly encode rendered HTML on admin-created blog posts. This allows attackers to execute arbitrary JavaScript in the victim's browser. Exploiting this vulnerability requires having access to an admin account. ## Recommendation Update to version 4.0.0 or later.
ghsaosv
CVE-2013-4477P4LOWCVSS 3.3≥ 0, < 8.0.0a02022-05-17
CVE-2013-4477 [LOW] OpenStack Identity Keystone Privilege Escalation vulnerability OpenStack Identity Keystone Privilege Escalation vulnerability The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to gain privileges.
ghsaosv
CVE-2012-5483P4LOWCVSS 2.1v2012.1.32012-12-26
CVE-2012-5483 [LOW] CWE-264 CVE-2012-5483: tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Am tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows local users to obtain access to EC2 services by reading administrative access and secret values from this file.
nvd
CVE-2013-2006P4LOWCVSS 2.1v2013.1.12013-05-21
CVE-2013-2006 [LOW] CWE-200 CVE-2013-2006: OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) adm OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.
ghsanvdosv
Openstack Keystone vulnerabilities | cvebase