CVE-2013-2013
CVE-2013-2013 affects python-keystoneclient prior to 0.2.4. The user-password-update command accepts the new password via the --password argument, allowing a local attacker to reveal the password by listing the process. Impact is local information disclosure; remediation is to upgrade to 0.2.4+ o...