Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-5253

Опубликовано: 25 авг. 2014
Источник: ubuntu
Приоритет: medium
CVSS2: 4.9

Описание

OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access via a domain-scoped token for that domain.

РелизСтатусПримечание
devel

not-affected

1:2014.2~b3-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1:2014.1.2.1-0ubuntu1.1]]
lucid

DNE

precise

not-affected

trusty

released

1:2014.1.2.1-0ubuntu1.1
trusty/esm

DNE

trusty was released [1:2014.1.2.1-0ubuntu1.1]
upstream

released

2014.1.2.1-1

Показывать по

Ссылки на источники

4.9 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2014-5253

redhat
больше 11 лет назад

OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access via a domain-scoped token for that domain.

nvd логотип

CVE-2014-5253

nvd
больше 11 лет назад

OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not properly revoke tokens when a domain is invalidated, which allows remote authenticated users to retain access via a domain-scoped token for that domain.

debian логотип

CVE-2014-5253

debian
больше 11 лет назад

OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno befo ...

github логотип

GHSA-77w8-qv8m-386h

CVSS3: 6.5
github
больше 3 лет назад

OpenStack Keystone Domain-scoped tokens don't get revoked

4.9 Medium

CVSS2