Lucene search
K

5 matches found

Chainguard
Chainguard
added yesterday3 views

CVE-2026-42999 vulnerabilities

Vulnerabilities for packages: openstack-keystone-2025.1, openstack-keystone-2025.2-fips, openstack-keystone-2025.2, openstack-keystone-2025.1-fips, openstack-keystone-2026.1-fips, openstack-keystone-2026.1...

8.8CVSS5.9AI score0.00329EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/12/11 2:24 p.m.4 views

USN-7926-1: OpenStack Keystone vulnerabilities

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges. CVE-2025-65073 It was discovered that OpenStack Keystone only validated the first 72 bytes of an...

7.5CVSS6.8AI score0.01319EPSS
Exploits2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-0015

Malware in sbrugna...

4.9CVSS6AI score0.02266EPSS
Exploits1References23
OSV
OSV
added 2022/05/17 4:31 a.m.8 views

GHSA-GMVP-5RF9-MXCM OpenStack Identity (Keystone) Multiple vulnerabilities in revocation events

The MySQL token driver in OpenStack Identity Keystone 2014.1.x before 2014.1.2.1 and Juno before Juno-3 stores timestamps with the incorrect precision, which causes the expiration comparison for tokens to fail and allows remote authenticated users to retain access via an expired token...

7.1CVSS6AI score0.01592EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2013/02/21 12:0 a.m.33 views

Ubuntu 12.04 LTS / 12.10 : keystone vulnerabilities (USN-1730-1)

Nathanael Burton discovered that Keystone did not properly verify disabled users. An authenticated but disabled user would continue to have access rights that were removed. CVE-2013-0282 Jonathan Murray discovered that Keystone would allow XML entity processing. A remote unauthenticated attacker...

5CVSS8.5AI score0.04863EPSS
Exploits2References4
Rows per page
Query Builder