Lucene search
PRIOn knowledge basePRION:CVE-2014-2237HistoryApr 01, 2014 - 6:35 a.m.
Authentication flaw
2014-04-0106:35:00
PRIOn knowledge base
www.prio-n.com
4
The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through 2013.2.2, and icehouse before icehouse-3, when issuing a trust token with impersonation enabled, does not include this token in the trusteeโs token-index-list, which prevents the token from being invalidated by bulk token revocation and allows the trustee to bypass intended access restrictions.
Related
cve
cve
CVE-2014-2237
2014-04-01 06:35:53
ubuntucve
ubuntucve
CVE-2014-2237
2014-04-01 00:00:00
veracode
veracode
Improper Invalidation Of Token
2019-01-15 08:52:21
ibm
ibm
cvelist
cvelist
CVE-2014-2237
2014-04-01 01:00:00
nessus
nessus
Fedora 20 : openstack-keystone-2013.2.3-2.fc20 (2014-4903)
2014-04-18 00:00:00
RHEL 6 : openstack-keystone (RHSA-2014:0368)
2024-04-24 00:00:00
Fedora 19 : openstack-keystone-2013.1.5-2.fc19 (2014-4210)
2014-04-07 00:00:00
github
github
seebug
seebug
OpenStack Keystone Trusteeไปค็ๅ้ๅคฑ่ดฅๅฎๅ
จ็ป่ฟๆผๆด
2014-03-07 00:00:00
debiancve
debiancve
CVE-2014-2237
2014-04-01 06:35:53
redhat
redhat
(RHSA-2014:0580) Moderate: openstack-keystone security and bug fix update
2014-05-29 00:00:00
(RHSA-2014:0368) Moderate: openstack-keystone security update
2014-04-03 00:00:00
nvd
nvd
CVE-2014-2237
2014-04-01 06:35:53
fedora
fedora
[SECURITY] Fedora 20 Update: openstack-keystone-2013.2.3-2.fc20
2014-04-17 06:00:52
[SECURITY] Fedora 19 Update: openstack-keystone-2013.1.5-2.fc19
2014-04-05 04:54:55
[SECURITY] Fedora 20 Update: openstack-keystone-2013.2.3-5.fc20
2014-08-07 15:24:24
openvas
openvas
Fedora Update for openstack-keystone FEDORA-2014-4903
2014-04-21 00:00:00
Fedora Update for openstack-keystone FEDORA-2014-4903
2014-04-21 00:00:00
Fedora Update for openstack-keystone FEDORA-2014-4210
2014-04-08 00:00:00