3.3 Low
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
0.0004 Low
EPSS
Percentile
5.2%
The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to gain privileges.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | keystone | < 2013.2-2 | keystone_2013.2-2_all.deb |
Debian | 11 | all | keystone | < 2013.2-2 | keystone_2013.2-2_all.deb |
Debian | 10 | all | keystone | < 2013.2-2 | keystone_2013.2-2_all.deb |
Debian | 999 | all | keystone | < 2013.2-2 | keystone_2013.2-2_all.deb |
Debian | 13 | all | keystone | < 2013.2-2 | keystone_2013.2-2_all.deb |