CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

458 matches found

Tenable Nessus•added 2025/12/12 12:0 a.m.•3 views

Ubuntu 22.04 LTS : OpenStack Keystone vulnerabilities (USN-7926-1)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7926-1 advisory. Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain...

7.5CVSS6.8AI score0.00466EPSS

Exploits2References4

RedhatCVE•added 2025/11/26 7:18 p.m.•1 views

CVE-2025-65073

A flaw was found in OpenStack Keystone. This vulnerability allows an attacker to obtain a valid OpenStack's Keystone token, leading to access to unauthorized resources or privilege escalation within the OpenStack instance via sending a valid AWS Amazon Web Services signature to the /v3/ec2tokens ...

7.5CVSS6.3AI score0.00031EPSS

Exploits0References4

Tenable Nessus•added 2025/11/18 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-65073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Keystone before 26.0.1, 27.0.0, and 28.0.0 allows a /v3/ec2tokens or /v3/s3tokens request with a valid AWS Signature to provide Keystone authorization...

7.5CVSS5.8AI score0.00031EPSS

Exploits0References2

NVD•added 2025/11/17 8:16 a.m.•3 views

CVE-2025-65073

OpenStack Keystone before 26.0.1, 27.0.0, and 28.0.0 allows a /v3/ec2tokens or /v3/s3tokens request with a valid AWS Signature to provide Keystone authorization...

7.5CVSS0.00031EPSS

Exploits0References2

EUVD•added 2025/11/17 12:0 a.m.•2 views

EUVD-2025-197772

OpenStack Keystone before 26.0.1, 27.0.0, and 28.0.0 allows a /v3/ec2tokens or /v3/s3tokens request with a valid AWS Signature to provide Keystone authorization...

7.5CVSS6.4AI score0.00031EPSS

Exploits0References3

CVE•added 2025/11/17 12:0 a.m.•18 views

CVE-2025-65073

OpenStack Keystone prior to 26.0.1, 27.0.0, or 28.0.0 is vulnerable to requests to /v3/ec2tokens or /v3/s3tokens bearing a valid AWS Signature that can authorize access. The issue (CVE-2025-65073) enables unauthorized access and potential privilege escalation. CVSS v3.1 base score 7.5 (Network, h...

7.5CVSS6.5AI score0.00031EPSS

Exploits0References2

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Ubuntu 24.04 LTS / 25.04 / 25.10 : OpenStack Keystone vulnerability (USN-7857-1)

The remote Ubuntu 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7857-1 advisory. Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to...

5.7AI score

Exploits0References1

Ubuntu•added 2025/11/04 7:38 p.m.•5 views

USN-7857-1: OpenStack Keystone vulnerability

Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens and s3tokens APIs. A remote attacker could possibly use this issue to obtain unauthorized access and escalate privileges...

5.5AI score

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-0095

Malware in sbrugna...

8.8CVSS8.6AI score0.01066EPSS

Exploits0References17

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-0092

Malware in sbrugna...

6CVSS6AI score0.00455EPSS

Exploits0References13