Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-0097

Malware in sbrugna...

8.8CVSS7.1AI score0.00999EPSS
Exploits0References9
OSV
OSV
added 2020/03/12 4:54 p.m.19 views

GHSA-XF8C-3CGX-FCWM Improper Access Control in novajoin

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS8.4AI score0.00999EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2020/03/12 4:54 p.m.70 views

Improper Access Control in novajoin

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS4.1AI score0.00999EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2019/07/30 5:15 p.m.4 views

CVE-2019-10138

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS7.1AI score0.00999EPSS
Exploits0References2
NVD
NVD
added 2019/07/30 5:15 p.m.27 views

CVE-2019-10138

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS7.7AI score0.00999EPSS
Exploits0References2
PyPA
PyPA
added 2019/07/30 5:15 p.m.5 views

PYSEC-2019-192

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS6.5AI score0.00999EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2019/07/30 5:15 p.m.15 views

Design/Logic Flaw

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

6.5CVSS8.5AI score0.00999EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/07/30 5:15 p.m.37 views

PYSEC-2019-192

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS3.4AI score0.00999EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/07/30 4:16 p.m.29 views

CVE-2019-10138

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

7.1CVSS8.6AI score0.00999EPSS
Exploits0References2
CVE
CVE
added 2019/07/30 4:16 p.m.95 views

CVE-2019-10138

The CVE-2019-10138 issue affects the python-novajoin plugin used by Red Hat OpenStack Platform (all versions up to 1.1.1). The root cause is insufficient access control in the novajoin API, enabling any keystone-authenticated user to generate FreeIPA tokens. This leads to unauthorized token gener...

8.8CVSS8.4AI score0.00999EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2019/07/10 1:1 p.m.6 views

python-novajoin: novajoin API lacks access control

A flaw was discovered in the python-novajoin plugin for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS7.4AI score0.00999EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2019/05/26 2:20 a.m.19 views

CVE-2019-10138

A flaw was discovered in the python-novajoin plugin for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS2.1AI score0.00999EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/04/30 5:48 p.m.8 views

python-novajoin: novajoin API lacks access control

A flaw was discovered in the python-novajoin plugin for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens...

8.8CVSS7.4AI score0.00999EPSS
Exploits0References5
Rows per page
Query Builder