CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1543 matches found

Tenable Nessus•added 2025/11/07 12:0 a.m.•1 views

Debian dla-4367 : keystone - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4367 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4367-1 [email protected] https://www.debian.org/lts/security/...

5.5AI score

Exploits0References2

OpenVAS•added 2025/11/06 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-7857-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score

Exploits0References3

Tenable Nessus•added 2025/11/05 12:0 a.m.•3 views

Ubuntu 24.04 LTS / 25.04 / 25.10 : OpenStack Keystone vulnerability (USN-7857-1)

The remote Ubuntu 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7857-1 advisory. Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to...

5.7AI score

Exploits0References1

OSV•added 2025/11/04 7:38 p.m.•2 views

USN-7857-1 keystone vulnerability

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges...

7.5CVSS5.8AI score0.00196EPSS

Exploits0References2

Ubuntu•added 2025/11/04 7:38 p.m.•9 views

USN-7857-1: OpenStack Keystone vulnerability

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges...

5.5AI score

Exploits0References1

OSV•added 2025/11/04 3:0 p.m.•1 views

UBUNTU-CVE-2025-65073

OpenStack Keystone before 26.0.1, 27.0.0, and 28.0.0 allows a /v3/ec2tokens or /v3/s3tokens request with a valid AWS Signature to provide Keystone authorization...

7.5CVSS5.8AI score0.00196EPSS

Exploits0References6

Positive Technologies•added 2025/11/04 12:0 a.m.•2 views

PT-2025-47130

Name of the Vulnerable Software and Affected Versions OpenStack Keystone versions prior to 26.0.1 OpenStack Keystone versions 27.0.0 OpenStack Keystone versions 28.0.0 keystone version 2:18.1.0-1+deb11u2 for Debian 11 bullseye Description The identity service, keystone, contains a flaw where...

7.5CVSS7.2AI score0.01272EPSS

Exploits2References32