Lucene search
K

43 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43000

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the memb...

8.8CVSS5.5AI score0.00328EPSS
Exploits1References2
CVE
CVE
added 2026/05/28 12:0 a.m.45 views

CVE-2026-43000

CVE-2026-43000 affects OpenStack Keystone (identity service). Affected: Keystone before 29.0.2. The issue arises when an impersonation vulnerability in application credentials is chained with Keystone trusts, allowing a user with member role to escalate to admin by delegating the victim's admin r...

8.8CVSS5.8AI score0.00328EPSS
Exploits1References5Affected Software1
Snyk
Snyk
added 2026/05/28 12:0 a.m.5 views

Insufficient Session Expiration

Overview keystone is a package that provides authentication, authorization and service discovery mechanisms via HTTP primarily for use by projects in the OpenStack family. Affected versions of this package are vulnerable to Insufficient Session Expiration via the federated token rescoping process...

8.1CVSS6AI score0.00249EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2026/05/01 9:30 a.m.14 views

a10-octavia (>=1.0.0 <=2.2.0), gadgetfinder (>=0.0.1 <=1.0.0) +3 more potentially affected by CVE-2026-43001 via keystone (>=15.0.1 <=29.0.1)

keystone PYPI version =15.0.1, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =1.12.0 Source cves: CVE-2026-43001 Source advisory: SNYK:PYTHON-KEYSTONE-16479530...

8CVSS5.8AI score0.00446EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/01 9:30 a.m.9 views

a10-octavia (>=1.0.0 <=2.2.0), gadgetfinder (>=0.0.1 <=1.0.0) +3 more potentially affected by CVE-2026-43001 via keystone (>=15.0.1 <=29.0.1)

keystone PYPI version =15.0.1, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =1.12.0 Source cves: CVE-2026-43001 Source advisory: OSV:GHSA-HHQ2-3832-XXCV...

8CVSS5.8AI score0.00446EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.11 views

PT-2026-31855

Name of the Vulnerable Software and Affected Versions OpenStack Keystone versions 14 through 26 before 26.1.1, 27.0.0, 28.0.0, and 29.0.0 Description A flaw exists in OpenStack Keystone where restricted application credentials can be used to create EC2 credentials. An authenticated user with a...

5.3CVSS5.8AI score0.0022EPSS
Exploits1References20
RedhatCVE
RedhatCVE
added 2026/01/09 8:41 a.m.7 views

CVE-2022-0087

keystone is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...

7.1CVSS6.6AI score0.02601EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2025/11/17 8:39 a.m.8 views

a10-octavia (>=1.0.0 <=2.2.0) potentially affected by CVE-2025-65073 via keystone (>=15.0.1 <=18.0.0)

keystone PYPI version =15.0.1, =1.0.0, =2.2.0 Source cves: CVE-2025-65073 Source advisory: SNYK:PYTHON-KEYSTONE-14038400...

7.5CVSS5.8AI score0.00201EPSS
Exploits0
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.7 views

Keystone 安全漏洞

Keystone is a powerful CMS open source for OpenStack. used to help you build and scale faster than any other Cms or application framework. A security vulnerability exists in Keystone versions prior to 26.0.1, 27.0.0, and 28.0.0 that stems from allowing requests with valid AWS signatures to provid...

7.5CVSS6.4AI score0.00201EPSS
Exploits0References2
Debian
Debian
added 2025/11/13 7:53 p.m.6 views

[SECURITY] [DSA 6056-1] keystone security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6056-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 13, 2025 https://www.debian.org/security/faq -...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Debian dsa-6056 : keystone - security update

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6056 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6056-1 [email protected] https://www.debian.org/security/...

5.5AI score
Exploits0References3
Debian
Debian
added 2025/11/07 11:50 a.m.5 views

[SECURITY] [DLA 4367-1] keystone security update

Debian LTS Advisory DLA-4367-1 [email protected] https://www.debian.org/lts/security/ Carlos Henrique Lima Melara November 07, 2025 https://wiki.debian.org/LTS Package : keystone Version : 2:18.1.0-1+deb11u2 CVE ID : not yet available Debian Bug : 1120053 A vulnerability was found in...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.5 views

Debian dla-4367 : keystone - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4367 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4367-1 [email protected] https://www.debian.org/lts/security/...

5.5AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.5 views

PT-2025-47130

Name of the Vulnerable Software and Affected Versions OpenStack Keystone versions prior to 26.0.1 OpenStack Keystone versions 27.0.0 OpenStack Keystone versions 28.0.0 keystone version 2:18.1.0-1+deb11u2 for Debian 11 bullseye Description The identity service, keystone, contains a flaw where...

7.5CVSS7.2AI score0.00201EPSS
Exploits0References28
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0097

Malware in sbrugna...

8.8CVSS8.1AI score0.04918EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-0017

Malware in sbrugna...

5CVSS6AI score0.02342EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-3519

Malware in sbrugna...

6.5CVSS6.1AI score0.01907EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-3144

Malicious code in bioql PyPI...

5CVSS6.2AI score0.01747EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2022-4547

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.03965EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-12691

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that...

8.8CVSS7.6AI score0.04918EPSS
Exploits0References2
Rows per page
Query Builder