Keystone: >> Openstack Identity >> 9.0.0.0 Security Vulnerabilities
The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrictions by rescoping a token.
CVSS Score
4.3
EPSS Score
0.002
Published
2016-06-13