CVE-2012-5571 in Folsomالمعلومات

الملخص

بحسب MITRE

A flaw was found in OpenStack Keystone. This vulnerability allows remote authenticated users to bypass intended authorization restrictions. This occurs because OpenStack Keystone does not properly handle EC2 (Elastic Compute Cloud) tokens when a user's role has been removed from a tenant. An attacker can leverage a token associated with a removed user role to gain unauthorized access.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

المصادر

Do you need the next level of professionalism?

Upgrade your account now!