Lucene search
K

1573 matches found

Nuclei
Nuclei
added 6 hours ago96 views

Keystone 6 Login Page - Open Redirect and Cross-Site Scripting

On the login page, there is a "from=" parameter in URL which is vulnerable to open redirect and can be escalated to reflected XSS. id: CVE-2022-0087 info: name: Keystone 6 Login Page - Open Redirect and Cross-Site Scripting author: ShivanshKhari severity: medium description: | On the login page,...

7.1CVSS6.8AI score0.02601EPSS
Exploits1References3
Chainguard
Chainguard
added last week9 views

GHSA-WHQR-FGM5-X77Q vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

6.1AI score
Exploits0
Chainguard
Chainguard
added last week11 views

GHSA-8F8M-WRVR-WCVF vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

6.1AI score
Exploits0
Chainguard
Chainguard
added last week10 views

GHSA-Q623-F4J4-P4XJ vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

6.1AI score
Exploits0
Chainguard
Chainguard
added last week13 views

CVE-2026-42998 vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

8.8CVSS6.1AI score0.00303EPSS
Exploits1
Chainguard
Chainguard
added last week11 views

GHSA-2R23-2G6V-2M5F vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

6.1AI score
Exploits0
Chainguard
Chainguard
added last week12 views

CVE-2026-43000 vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

8.8CVSS6.1AI score0.00328EPSS
Exploits1
Chainguard
Chainguard
added last week10 views

CVE-2026-44394 vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

8.1CVSS6.1AI score0.00249EPSS
Exploits1
Chainguard
Chainguard
added last week12 views

CVE-2026-42999 vulnerabilities

Vulnerabilities for packages: openstack-keystone-2026.1-fips, openstack-keystone-2025.2-fips, openstack-keystone-2026.1, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2025.1...

8.8CVSS6.1AI score0.00329EPSS
Exploits1
OSV
OSV
added 2026/06/29 11:50 a.m.5 views

PYSEC-2026-370 Openstack Keystone Incorrect Authorization vulnerability

A flaw was found in openstack-keystone, only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity. A patch is...

9.1CVSS6.6AI score0.01319EPSS
Exploits1References13
OSV
OSV
added 2026/06/23 10:8 a.m.5 views

RHSA-2026:28044 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (openstack-keystone) security update

Bulletin has no description...

7.5CVSS5.8AI score0.0022EPSS
Exploits1References16
Chainguard
Chainguard
added 2026/06/23 8:17 a.m.12 views

GHSA-3J69-69WJ-XQX2 vulnerabilities

Vulnerabilities for packages: openstack-glance-2025.2-fips, openstack-glance-2025.2, openstack-keystone-2025.2-fips, openstack-keystone-2025.1, openstack-horizon-2025.2, openstack-glance-2025.1-fips, openstack-placement-2025.2-fips, openstack-placement-2025.1, openstack-keystone-2026.1,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/23 8:17 a.m.6 views

CVE-2026-54911 vulnerabilities

Vulnerabilities for packages: openstack-glance-2025.2-fips, openstack-glance-2025.2, openstack-keystone-2025.2-fips, openstack-keystone-2025.1, openstack-horizon-2025.2, openstack-glance-2025.1-fips, openstack-placement-2025.2-fips, openstack-placement-2025.1, openstack-keystone-2026.1,...

6.5CVSS6.1AI score0.00272EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/23 8:16 a.m.14 views

GHSA-6V7P-G79W-8964 vulnerabilities

Vulnerabilities for packages: superset, openstack-glance-2025.2-fips, datadog-agent, datadog-agent-fips, openstack-glance-2025.2, openstack-keystone-2025.2-fips, lmcache-cuda-12.8, dask-kubernetes, synapse, nemo, jupyter-all-spark-notebook, openstack-keystone-2025.1, openstack-horizon-2025.2,...

6.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/22 9:1 p.m.4 views

openstack-keystone: OpenStack Keystone: Privilege escalation through EC2 credential creation

A flaw was found in OpenStack Keystone. An authenticated user with a reader role can exploit a vulnerability in the EC2 credential creation endpoint. By using a restricted application credential to call the EC2 credential creation API, the user may obtain EC2/S3 credentials that carry the full se...

5.3CVSS5.8AI score0.0022EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/06/22 9:1 p.m.10 views

openstack-keystone: OpenStack Keystone: Unauthorized access and privilege escalation via AWS signature validation flaw

A flaw was found in OpenStack Keystone. This vulnerability allows an attacker to obtain a valid OpenStack's Keystone token, leading to access to unauthorized resources or privilege escalation within the OpenStack instance via sending a valid AWS Amazon Web Services signature to the /v3/ec2tokens ...

7.5CVSS5.8AI score0.00201EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/22 9:1 p.m.4 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (openstack-keystone) security update

An update for openstack-keystone is now available for Red Hat OpenStack Platform 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS5.9AI score0.0022EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.8 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : OpenStack Keystone vulnerabilities (USN-8433-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8433-1 advisory. It was discovered that OpenStack Keystone allowed restricted application credentials to create EC2 credentials. An...

8.8CVSS5.9AI score0.00446EPSS
Exploits6References8
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.9 views

GHSA-JQ35-7PRP-9V3F vulnerabilities

Vulnerabilities for packages: superset, netbox, openstack-glance-2025.2-fips, datadog-agent, datadog-agent-fips, openstack-glance-2025.2, openstack-keystone-2025.2-fips, airflow-postgres-fips, openstack-keystone-2025.1, openstack-horizon-2025.2, openstack-glance-2025.1-fips,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/16 8:22 p.m.7 views

GHSA-FHV5-28VV-H8M8 vulnerabilities

Vulnerabilities for packages: superset, netbox, openstack-glance-2025.2-fips, datadog-agent, datadog-agent-fips, openstack-glance-2025.2, openstack-keystone-2025.2-fips, airflow-postgres-fips, openstack-keystone-2025.1, openstack-horizon-2025.2, openstack-glance-2025.1-fips,...

6.1AI score
Exploits0
Rows per page
Query Builder