Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain access to an unauthorized project for which the trustor has certain roles via the project ID in a V2 API trust token request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenStack Keystone 加密问题漏洞
Vulnerability Description
OpenStack是美国美国国家航空航天局(NASA)的一个云平台管理项目。OpenStack Keystone是使用在OpenStack中的一个用于管理身份验证、服务规则和服务令牌功能的模块。 OpenStack Keystone存在加密问题漏洞。远程攻击者利用该漏洞获取未授权项目的访问权限。以下产品和版本受到影响:OpenStack Identity (Keystone) 2013.2.4之前版本、2014.x版本至2014.1.2之前版本、Juno版本至Juno-2之前版本。
CVSS Information
N/A
Vulnerability Type
N/A