| Max CVSS | 6.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-2059 | 6.0 |
OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, which allows remote authenticated users to retain ac
|
29-08-2017 - 01:33 | 21-05-2013 - 18:55 | |
| CVE-2013-2006 | 2.1 |
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.
|
05-05-2014 - 05:21 | 21-05-2013 - 18:55 | |
| CVE-2013-2030 | 2.1 |
keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by pre-creating this directory, which is reused by Nova,
|
05-05-2014 - 05:21 | 27-12-2013 - 01:55 |