Improper Revocation Check Vulnerability in OpenStack Keystone Folsom by OpenStack
CVE-2013-1865
Currently unrated
Summary
OpenStack Keystone Folsom (2012.2) suffers from improper handling of revocation checks for PKI tokens. This oversight allows remote attackers to exploit revoked tokens, effectively bypassing access restrictions and gaining unauthorized access. This vulnerability can compromise the integrity of access controls, posing a significant risk to systems relying on OpenStack for identity services. Users should consider updating to patched versions and implementing additional security measures to mitigate potential threats.
References
Timeline
Vulnerability published
Vulnerability Reserved