RSS   Vulnerabilities for 'Openstack identity'   RSS

2016-06-13
 
CVE-2016-4911

 

 
The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrictions by rescoping a token.

 


Copyright 2024, cxsecurity.com

 

Back to Top