Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2024/11/04 12:0 a.m.14 views

RHEL 6 : openstack-keystone (RHSA-2014:0580)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0580 advisory. The OpenStack Identity service keystone authenticates and authorizes OpenStack users by keeping track of users and their permitted activities. The...

5CVSS5.6AI score0.01367EPSS
Exploits1References7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:30 p.m.28 views

Security Bulletin: IBM SmartCloud Orchestartor - Trustee token revocation does not work with memcache backend (CVE-2014-2237)

Summary When a trustor issues a trust token with impersonation enabled, the token is only added to the trustor's token list and not to the trustee's token list. This scenario results in the trust token not being invalidated by the trustee's token revocation bulk revocation. It is most noticeable...

5CVSS0.3AI score0.01367EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2014/08/08 12:0 a.m.27 views

Fedora Update for openstack-keystone FEDORA-2014-5497

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.03155EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2014/05/29 8:26 p.m.42 views

Moderate: Red Hat Security Advisory: openstack-keystone security and bug fix update

Updated openstack-keystone packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux OpenStack Platform 4.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base scor...

5CVSS5.7AI score0.01367EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2014/04/21 12:0 a.m.31 views

Fedora Update for openstack-keystone FEDORA-2014-4903

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2014/04/08 12:0 a.m.33 views

Fedora Update for openstack-keystone FEDORA-2014-4210

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.03128EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2014/04/03 8:18 p.m.46 views

Moderate: Red Hat Security Advisory: openstack-keystone security update

Updated openstack-keystone packages that fix two security issues are now available for Red Hat Enterprise Linux OpenStack Platform 3.0. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

5.8CVSS5.9AI score0.02239EPSS
Exploits3References3
CVE
CVE
added 2014/04/01 1:0 a.m.65 views

CVE-2014-2237

CVE-2014-2237 concerns the memcache token backend of OpenStack Keystone. When issuing a trust token with impersonation enabled, the trustee’s token-index-list is not updated, so bulk token revocation cannot invalidate the token, allowing bypass of access controls. Affected: Keystone releases from...

5CVSS6.2AI score0.01367EPSS
Exploits1References4Affected Software1
seebug.org
seebug.org
added 2014/03/07 12:0 a.m.36 views

OpenStack Keystone Trustee令牌吊销失败安全绕过漏洞

Bugtraq ID:65895 CVE ID:CVE-2014-2237 Keystone是Openstack中用于身份验证的项目,任何服务请求需要经过它的验证获得服务的endpoint。 OpenStack Keystone Keystone内存令牌后端存在漏洞,当委托人提交启用模拟的可信令牌时,令牌仅添加到委托人令牌列表,但没添加到受托人令牌列表。这会导致受托人吊销令牌时不能使信任令牌正确失效。 使用memcache后端的Keystone受此漏洞影响。 0 Openstack Keystone 2013.1 - 2013.1.4 Openstack Keystone 2013.2 ...

5CVSS6.5AI score0.01367EPSS
Exploits1
Rows per page
Query Builder