Lucene search
Redhat.comRH:CVE-2020-12692HistoryMay 08, 2020 - 12:09 a.m.
CVE-2020-12692
2020-05-0800:09:51
redhat.com
access.redhat.com
6
0.001 Low
EPSS
Percentile
38.1%
A flaw was found in Keystone, where the restriction was not checked for the Signature Version 4 (V4) process of AWS signatures issued within a limited time window. This flaw allows an attacker to capture an auth header and reuse it, potentially maintaining indefinite access.
Related
debiancve
debiancve
CVE-2020-12692
2020-05-07 00:15:10
nvd
nvd
CVE-2020-12692
2020-05-07 00:15:10
cvelist
cvelist
CVE-2020-12692
2020-05-06 23:42:42
github
github
ubuntucve
ubuntucve
CVE-2020-12692
2020-05-07 00:00:00
osv
osv
CVE-2020-12692
2020-05-07 00:15:10
PYSEC-2020-56
2020-05-07 00:15:00
veracode
veracode
Man-in-the-Middle (MitM)
2020-05-08 05:36:35
prion
prion
Authorization
2020-05-07 00:15:00
cve
cve
CVE-2020-12692
2020-05-07 00:15:10
redhat
redhat
(RHSA-2020:2732) Important: openstack-keystone security update
2020-06-24 12:25:05
(RHSA-2020:3105) Important: openstack-keystone security update
2020-07-22 12:28:32
(RHSA-2020:3102) Important: openstack-keystone security update
2020-07-22 12:24:32
nessus
nessus
RHEL 7 : openstack-keystone (RHSA-2020:2732)
2020-06-24 00:00:00
RHEL 8 : openstack-keystone (RHSA-2020:3105)
2020-07-22 00:00:00
Ubuntu 18.04 LTS : OpenStack Keystone vulnerabilities (USN-4480-1)
2020-09-02 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4480-1)
2020-09-02 00:00:00
Debian: Security Advisory (DSA-4679-1)
2020-05-08 00:00:00
ibm
ibm
ubuntu
ubuntu
OpenStack Keystone vulnerabilities
2020-09-01 00:00:00