CVE-2012-5571 in Folsominfo

Zusammenfassung

von MITRE

A flaw was found in OpenStack Keystone. This vulnerability allows remote authenticated users to bypass intended authorization restrictions. This occurs because OpenStack Keystone does not properly handle EC2 (Elastic Compute Cloud) tokens when a user's role has been removed from a tenant. An attacker can leverage a token associated with a removed user role to gain unauthorized access.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservieren

24.10.2012

Veröffentlichung

17.12.2012

Moderieren

akzeptiert

Eintrag

VDB-63196

CPE

bereit

EPSS

0.02038

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!