Lucene search
K

4 matches found

Ubuntu
Ubuntu
added 2026/06/16 1:45 p.m.7 views

USN-8433-1: OpenStack Keystone vulnerabilities

It was discovered that OpenStack Keystone allowed restricted application credentials to create EC2 credentials. An authenticated attacker with only a reader role could possibly use this issue to bypass the role restrictions imposed on the application credential. CVE-2026-33551 It was discovered...

8.8CVSS5.8AI score0.00446EPSS
Exploits6
EUVD
EUVD
added 2026/03/25 9:57 p.m.5 views

EUVD-2026-15952

n8n Has Authorization Bypass in OAuth Callback via N8NSKIPAUTHONOAUTHCALLBACK...

6.3CVSS5.8AI score0.0018EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/07/22 12:13 p.m.3 views

openstack-keystone: Credentials endpoint policy logic allows changing credential owner and target project ID

A vulnerability was found in Keystone's EC2 credentials API. This flaw allows any authenticated user to create an EC2 credential for themselves for a project that they have a specified role, and then perform an update to the credential user and project, allowing them to masquerade as another user...

8.8CVSS7.1AI score0.04918EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/06/24 12:43 p.m.3 views

openstack-keystone: Credentials endpoint policy logic allows changing credential owner and target project ID

A vulnerability was found in Keystone's EC2 credentials API. This flaw allows any authenticated user to create an EC2 credential for themselves for a project that they have a specified role, and then perform an update to the credential user and project, allowing them to masquerade as another user...

8.8CVSS7.1AI score0.04918EPSS
Exploits0References5
Rows per page
Query Builder