keystone/middleware/auth_token.py in OpenStack Nova Folsom, Grizzly, and Havana uses an insecure temporary directory for storing signing certificates, which allows local users to spoof servers by. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.
Privilege Escalation
Compute
Folsom
Grizzly
Havana
NVD
CVSS 2.0
2.1
EPSS
0.0%