Lucene search

GitHub Advisory DatabaseGHSA-274V-R947-V34R

HistoryMay 13, 2022 - 1:26 a.m.

OpenStack Identity Keystone is vulnerable to Block delegation escalation of privilege

2022-05-1301:26:09

CWE-269

GitHub Advisory Database

github.com

openstack

keystone

vulnerable

block delegation

privilege escalation

remote authenticated users

trust

oauth token

impersonation.

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.1

Confidence

Low

EPSS

0.007

Percentile

80.7%

JSON

OpenStack Identity (Keystone) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 does not properly handle chained delegation, which allows remote authenticated users to gain privileges by leveraging a (1) trust or (2) OAuth token with impersonation enabled to create a new token with additional roles.

Affected configurations

Vulners

Node

keystonekeystoneRange<8.0.0a0

VendorProductVersionCPE
keystonekeystone*cpe:2.3:a:keystone:keystone:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
keystone	keystone	*	cpe:2.3:a:keystone:keystone::::::::

References

lists.opensuse.org/opensuse-security-announce/2014-06/msg00031.html

secunia.com/advisories/57886

secunia.com/advisories/59547

www.openwall.com/lists/oss-security/2014/06/12/3

www.securityfocus.com/bid/68026

bugs.launchpad.net/keystone/+bug/1324592

github.com/advisories/GHSA-274v-r947-v34r

nvd.nist.gov/vuln/detail/CVE-2014-3476

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.1

Confidence

Low

EPSS

0.007

Percentile

80.7%

JSON

Related for GHSA-274V-R947-V34R