Lucene search
Redhat.comRH:CVE-2020-12689HistoryMay 07, 2020 - 7:39 p.m.
CVE-2020-12689
2020-05-0719:39:53
redhat.com
access.redhat.com
15
EPSS
0.015
Percentile
87.1%
A vulnerability was found in Keystone’s EC2 credentials API. This flaw allows any user authenticated within a limited scope (trust/OAuth/application credential) to create an EC2 credential with escalated permissions, for example, obtaining an “admin” role, while the user is on a limited “viewer” role.
Related
debiancve
debiancve
CVE-2020-12689
2020-05-07 00:15:10
osv
osv
PYSEC-2020-53
2020-05-07 00:15:00
CVE-2020-12689
2020-05-07 00:15:10
keystone - security update
2020-05-06 00:00:00
cve
cve
CVE-2020-12689
2020-05-07 00:15:10
ubuntucve
ubuntucve
CVE-2020-12689
2020-05-07 00:00:00
CVE-2020-12691
2020-05-07 00:00:00
veracode
veracode
Privilege Escalation
2020-05-08 05:49:25
github
github
prion
prion
Code injection
2020-05-07 00:15:00
cvelist
cvelist
CVE-2020-12689
2020-05-06 23:43:20
nvd
nvd
CVE-2020-12689
2020-05-07 00:15:10
nessus
nessus
RHEL 7 : openstack-keystone (RHSA-2020:3096)
2020-07-22 00:00:00
RHEL 7 : openstack-keystone (RHSA-2020:2732)
2020-06-24 00:00:00
RHEL 8 : openstack-keystone (RHSA-2020:3105)
2020-07-22 00:00:00
redhat
redhat
(RHSA-2020:3096) Important: openstack-keystone security update
2020-07-22 12:02:47
(RHSA-2020:2732) Important: openstack-keystone security update
2020-06-24 12:25:05
(RHSA-2020:3102) Important: openstack-keystone security update
2020-07-22 12:24:32
openvas
openvas
Debian: Security Advisory (DSA-4679-1)
2020-05-08 00:00:00
Ubuntu: Security Advisory (USN-4480-1)
2020-09-02 00:00:00
ibm
ibm
ubuntu
ubuntu
OpenStack Keystone vulnerabilities
2020-09-01 00:00:00