Improper Revocation Check Vulnerability in OpenStack Keystone Folsom by OpenStack
CVE-2013-1865

Currently unrated

Key Information:

Vendor
Openstack
Status
Vendor
CVE Published:
22 March 2013

Summary

OpenStack Keystone Folsom (2012.2) suffers from improper handling of revocation checks for PKI tokens. This oversight allows remote attackers to exploit revoked tokens, effectively bypassing access restrictions and gaining unauthorized access. This vulnerability can compromise the integrity of access controls, posing a significant risk to systems relying on OpenStack for identity services. Users should consider updating to patched versions and implementing additional security measures to mitigate potential threats.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.