Lucene search
K

2076 matches found

Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.41 views

Amazon Linux AMI : java-1.6.0-openjdk (ALAS-2012-88)

Multiple flaws were discovered in the CORBA Common Object Request Broker Architecture implementation in Java. A malicious Java application or applet could use these flaws to bypass Java sandbox restrictions or modify immutable object data. CVE-2012-1711 , CVE-2012-1719 It was discovered that the...

10CVSS8.6AI score0.93688EPSS
Exploits9References8
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.48 views

Oracle Linux 6 : java-1.6.0-openjdk (ELSA-2012-0729)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2012-0729 advisory. 1:1.6.0.0-1.48.1.11.3 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828751 1:1.6.0.0-1.47.1.11.3 - Modified patch3,...

10CVSS8.2AI score0.93688EPSS
Exploits9References10
OSV
OSV
added 2013/05/21 6:55 p.m.2 views

DEBIAN-CVE-2013-2059

OpenStack Identity Keystone Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain access via the token...

6CVSS7AI score0.02468EPSS
Exploits1References1
Prion
Prion
added 2013/05/21 6:55 p.m.17 views

Authentication flaw

OpenStack Identity Keystone Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain access via the token...

6CVSS6.8AI score0.02468EPSS
Exploits1References11Affected Software1
PyPA
PyPA
added 2013/05/21 6:55 p.m.7 views

PYSEC-2013-41

OpenStack Identity Keystone Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain access via the token...

6CVSS7AI score0.02468EPSS
Exploits1References11Affected Software1
OSV
OSV
added 2013/05/21 6:55 p.m.5 views

PYSEC-2013-41

OpenStack Identity Keystone Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain access via the token...

6CVSS6.2AI score0.02468EPSS
Exploits1References11
Debian CVE
Debian CVE
added 2013/05/21 6:0 p.m.21 views

CVE-2013-2059

OpenStack Identity Keystone Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain access via the token...

6CVSS6.3AI score0.02468EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2013/04/09 12:0 a.m.33 views

Fedora 18 : openstack-keystone-2012.2.3-5.fc18 (2013-4590)

Fix online revocation check for PKI tokens CVE-2013-1865 Add openssl dependency for PKI tokens Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possibl...

6.8CVSS5.3AI score0.02608EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/04/04 8:15 p.m.3 views

keystone: online validation of Keystone PKI tokens bypasses revocation check

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS5.9AI score0.02608EPSS
Exploits0References4
Prion
Prion
added 2013/04/03 12:55 a.m.18 views

Default configuration

The default configuration for IPA servers in Red Hat Enterprise Linux 6, when revoking a certificate from an Identity Management replica, does not properly update another Identity Management replica, which causes inconsistent Certificate Revocation Lists CRLs to be used and might allow remote...

4.3CVSS6.9AI score0.01189EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2013/03/22 9:55 p.m.14 views

CVE-2013-1865

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS6.5AI score0.02608EPSS
Exploits0References10
Prion
Prion
added 2013/03/22 9:55 p.m.20 views

Design/Logic Flaw

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS7AI score0.02608EPSS
Exploits0References10Affected Software2
PyPA
PyPA
added 2013/03/22 9:55 p.m.7 views

PYSEC-2013-39

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS7AI score0.02608EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2013/03/22 9:55 p.m.7 views

PYSEC-2013-39

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS6.4AI score0.02608EPSS
Exploits0References11
Cvelist
Cvelist
added 2013/03/22 9:0 p.m.33 views

CVE-2013-1865

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.3AI score0.02608EPSS
Exploits0References10
CVE
CVE
added 2013/03/22 9:0 p.m.75 views

CVE-2013-1865

CVE-2013-1865 affects OpenStack Keystone Folsom (2012.2). The vulnerability arises because revocation checks for Keystone PKI tokens are not performed when processed through a server, allowing remote attackers to bypass access restrictions using a revoked PKI token. The reported impact is partial...

6.8CVSS6.5AI score0.02608EPSS
Exploits0References10Affected Software1
Debian CVE
Debian CVE
added 2013/03/22 9:0 p.m.29 views

CVE-2013-1865

OpenStack Keystone Folsom 2012.2 does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token...

6.8CVSS6.5AI score0.02608EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2013/03/22 12:0 a.m.3 views

PT-2013-3441 · Openstack · Openstack Keystone

Name of the Vulnerable Software and Affected Versions: OpenStack Keystone version 2012.2 Description: The issue allows remote attackers to bypass intended access restrictions via a revoked PKI token, due to improper revocation checks for Keystone PKI tokens when performed through a server...

6.9CVSS6.3AI score0.02608EPSS
Exploits0References21
OpenVAS
OpenVAS
added 2013/03/22 12:0 a.m.32 views

Ubuntu Update for keystone USN-1772-1

Check for the Version of keystone OpenVAS Vulnerability Test $Id: gbubuntuUSN17721.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for keystone USN-1772-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

6.8CVSS6.4AI score0.02608EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/03/22 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-1772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02608EPSS
Exploits0References2
Rows per page
Query Builder