CVE-2012-5483 in Keystoneinformazioni

Riassunto

di MITRE

tools/sample_data.sh in OpenStack Keystone 2012.1.3, when access to Amazon Elastic Compute Cloud (Amazon EC2) is configured, uses world-readable permissions for /etc/keystone/ec2rc, which allows local users to obtain access to EC2 services by reading administrative access and secret values from this file.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

24/10/2012

Divulgazione

26/12/2012

Moderazione

accettato

Voce

VDB-63260

CPE

pronto

CWE

CWE-264 (confermato)

CVSS

2.1 (NVD)

EPSS

0.00341

KEV

Attività

molto basso

Settore

Education, Hospital, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5483
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5483
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5483/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!