exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2022-2447

больше 3 лет назад

A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.

CVSS3: 6.6

EPSS: Низкий

CVE-2022-2447

больше 3 лет назад

A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.

CVSS3: 6.6

EPSS: Низкий

CVE-2022-2447

больше 3 лет назад

A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.

CVSS3: 6.6

EPSS: Низкий

CVE-2022-2447

больше 3 лет назад

A flaw was found in Keystone. There is a time lag (up to one hour in a ...

CVSS3: 6.6

EPSS: Низкий

GHSA-r88f-774m-5rj4

больше 3 лет назад

A flaw was found in OpenStack. The application credential tokens can be used even after they have expired. This flaw allows an authenticated remote attacker to obtain access despite the defender's efforts to remove access.

CVSS3: 8.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-2447 A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.	CVSS3: 6.6	1% Низкий	больше 3 лет назад
CVE-2022-2447 A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.	CVSS3: 6.6	1% Низкий	больше 3 лет назад
CVE-2022-2447 A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.	CVSS3: 6.6	1% Низкий	больше 3 лет назад
CVE-2022-2447 A flaw was found in Keystone. There is a time lag (up to one hour in a ...	CVSS3: 6.6	1% Низкий	больше 3 лет назад
GHSA-r88f-774m-5rj4 A flaw was found in OpenStack. The application credential tokens can be used even after they have expired. This flaw allows an authenticated remote attacker to obtain access despite the defender's efforts to remove access.	CVSS3: 8.8	1% Низкий	больше 3 лет назад

Уязвимостей на страницу