Max CVSS | 6.5 | Min CVSS | 6.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-3520 | 6.5 |
OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain access to an unauthorized project for which the trustor has certain roles via the project ID in a V2 API trust
|
13-02-2023 - 00:40 | 26-10-2014 - 20:55 | |
CVE-2014-3476 | 6.0 |
OpenStack Identity (Keystone) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 does not properly handle chained delegation, which allows remote authenticated users to gain privileges by leveraging a (1) trust or (2) OAuth token with im
|
02-06-2020 - 19:49 | 17-06-2014 - 14:55 |