Privilege Escalation

2019-01-1508:55:33

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

JSON

openstack-keystone is vulnerable to privilege escalation attacks. The vulnerability exists as the ec2tokens API in OpenStack Identity (Keystone) before Havana 2013.2.1 and Icehouse before icehouse-2 does not return a trust-scoped token when one is received, which allows remote trust users to gain privileges by generating EC2 credentials from a trust-scoped token and using them in an ec2tokens API request.

CPENameOperatorVersion
openstack-keystoneeq2012.2.3__7.el6ost
openstack-keystoneeq2012.2.3__4.el6ost
openstack-keystoneeq2013.1.4__1.el6ost
openstack-keystoneeq2012.2__6.el6
openstack-keystoneeq2013.1.4__2.el6ost
openstack-keystoneeq2012.2.3__3.el6ost
openstack-keystoneeq2012.1.3__3.el6
openstack-keystoneeq2012.2.1__1.el6ost
openstack-keystoneeq2013.1.2__2.el6ost
openstack-keystoneeq2012.2.4__2.el6ost

Name	Operator	Version
openstack-keystone	eq	2012.2.3__7.el6ost
openstack-keystone	eq	2012.2.3__4.el6ost
openstack-keystone	eq	2013.1.4__1.el6ost
openstack-keystone	eq	2012.2__6.el6
openstack-keystone	eq	2013.1.4__2.el6ost
openstack-keystone	eq	2012.2.3__3.el6ost
openstack-keystone	eq	2012.1.3__3.el6
openstack-keystone	eq	2012.2.1__1.el6ost
openstack-keystone	eq	2013.1.2__2.el6ost
openstack-keystone	eq	2012.2.4__2.el6ost