exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2014-0105

почти 12 лет назад

The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."

CVSS2: 6

EPSS: Низкий

CVE-2014-0105

почти 12 лет назад

The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."

CVSS2: 4.3

EPSS: Низкий

CVE-2014-0105

почти 12 лет назад

The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."

CVSS2: 6

EPSS: Низкий

CVE-2014-0105

почти 12 лет назад

The auth_token middleware in the OpenStack Python client library for K ...

CVSS2: 6

EPSS: Низкий

GHSA-gwvq-rgqf-993f

больше 3 лет назад

python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware

CVSS3: 6

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2014-0105 The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."	CVSS2: 6	0% Низкий	почти 12 лет назад
CVE-2014-0105 The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."	CVSS2: 4.3	0% Низкий	почти 12 лет назад
CVE-2014-0105 The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from memcache, which allows remote authenticated users to gain privileges in opportunistic circumstances via a large number of requests, related to an "interaction between eventlet and python-memcached."	CVSS2: 6	0% Низкий	почти 12 лет назад
CVE-2014-0105 The auth_token middleware in the OpenStack Python client library for K ...	CVSS2: 6	0% Низкий	почти 12 лет назад
GHSA-gwvq-rgqf-993f python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware	CVSS3: 6	0% Низкий	больше 3 лет назад

Уязвимостей на страницу