Package impact

PyPI / keystone

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2013-1865	medium	—	6.8	4y ago	OpenStack Keystone Folsom (2012.2) does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions…
CVE-2013-0270	medium	6.5	6.5	4y ago	A flaw was found in OpenStack Keystone. A remote attacker could exploit this vulnerability by sending a large HTTP request, specifically by providing a long tenant name when requesting a token. This …
CVE-2014-0204	medium	—	6.5	12y ago	OpenStack Identity Keystone Improper Privilege Management
CVE-2014-3476	medium	—	6.0	4y ago	OpenStack Identity (Keystone) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 does not properly handle chained delegation, which allows remote authenticated users to gain privileges b…
CVE-2013-2059	medium	—	6.0	13y ago	OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, w…
CVE-2021-3563	medium	—	5.5	4y ago	Openstack Keystone Incorrect Authorization vulnerability
CVE-2012-5571	medium	5.4	5.4	14y ago	OpenStack Keystone intended authorization restrictions bypass
CVE-2013-4294	medium	—	5.0	4y ago	The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which a…
CVE-2014-2237	medium	—	5.0	4y ago	The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 2013.2 through 2013.2.2, and icehouse before icehouse-3, when issuing a trust token with impersonation enabled, d…
CVE-2013-2014	medium	—	5.0	4y ago	OpenStack Identity (Keystone) before 2013.1 allows remote attackers to cause a denial of service (memory consumption and crash) via multiple long requests.
CVE-2013-0282	medium	—	5.0	13y ago	OpenStack Keystone allows context-dependent attackers to bypass access restrictions
CVE-2014-5253	medium	—	4.9	4y ago	OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access …
CVE-2014-5252	medium	—	4.9	12y ago	The V3 API in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 updates the issued_at value for UUID v2 tokens, which allows remote authenticated users to bypass the tok…
CVE-2014-5251	medium	—	4.9	12y ago	The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 stores timestamps with the incorrect precision, which causes the expiration comparison for to…
CVE-2012-3426	medium	—	4.9	14y ago	OpenStack Keystone token expiration issues
CVE-2016-4911	medium	4.3	4.3	10y ago	The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrict…
CVE-2012-3542	medium	—	4.3	14y ago	OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allows remote attackers to add an arbitrary user to an arbitrary tenant via a request to update the use…
CVE-2015-3646	medium	—	4.0	11y ago	OpenStack Keystone Logs Passwords
CVE-2014-3621	medium	—	4.0	12y ago	OpenStack Identity Keystone Exposure of Sensitive Information
CVE-2012-5563	medium	—	4.0	14y ago	OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not properly implement token expiration, which allows remote authenticated users to bypass intended authorization restrictions by creating…
CVE-2012-4457	medium	—	4.0	14y ago	OpenStack Keystone Token authorization for a user in a disabled tenant is allowed
CVE-2012-4413	medium	—	4.0	14y ago	OpenStack Keystone does not invalidate existing tokens when granting or revoking roles