2 matches found
CVE-2026-43000 vulnerabilities
Vulnerabilities for packages: openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2026.1-fips, openstack-keystone-2025.1, openstack-keystone-2026.1, openstack-keystone-2025.2-fips...
DEBIAN-CVE-2026-43000
An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the member role on a project can escalate to admin by chaining unrestricted application credentials with Keystone trusts. The impersonated token...