OpenStack Keystone CVE-2026-43000
HIGHSeverity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AV:N to the Keystone API and PR:L for a member-role account, but AC:H because success requires chaining a separate application-credential impersonation flaw and a victim holding admin; full C/I/A:H on admin takeover.
Primary rating from NVD.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
8DescriptionNVD
An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the member role on a project can escalate to admin by chaining unrestricted application credentials with Keystone trusts. The impersonated token carries the victim's identity, which passes the trustor validation check. Keystone then validates the delegated roles against the victim's actual role assignments in the database, not the roles on the requesting token. This allows the attacker to create a trust delegating the victim's admin role to themselves. The trust persists independently, and additional trusts and application credentials can be created to maintain access. All actions are logged under the victim's identity.
AnalysisAI
Privilege escalation in OpenStack Keystone before 29.0.2 lets a user holding only the member role on a project chain unrestricted application credentials with Keystone trusts to obtain admin. Because Keystone validates delegated roles against the victim's actual database role assignments rather than the roles on the requesting token, an attacker who can impersonate a victim's token can mint a trust delegating the victim's admin role to themselves, with all activity logged under the victim's identity. Exploitation is only practical when paired with a separate application-credential impersonation flaw; EPSS is very low (0.03%) and there is no public exploit identified at time of analysis.
Technical ContextAI
Keystone is the centralized identity, authentication, and authorization service for OpenStack, issuing the tokens that govern access to every other OpenStack service (Nova, Neutron, Cinder, etc.). The flaw is a CWE-863 Incorrect Authorization issue in Keystone's trust and application-credential delegation logic: trusts let a trustor delegate a subset of roles to a trustee, and the trustor-validation step confirms the requesting token carries the trustor's identity. The defect is that role validation for the trust is performed against the trustor/victim's persisted role assignments in the database instead of against the (potentially constrained) roles actually present on the requesting token, so an impersonated token that carries the victim's identity passes validation and can delegate the victim's full privilege set, including admin. The single affected CPE is cpe:2.3:a:openstack:keystone:*:*:*:*:*:*:*:*.
RemediationAI
Vendor-released patch: upgrade Keystone to 29.0.2 or later (the first fixed release), following OSSA-2026-015 (https://security.openstack.org/ossa/OSSA-2026-015.html); operators running distro packages should apply the corresponding Ubuntu update from USN-8433-1 or the Red Hat errata referenced in their VEX (https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-43000.json). Because exploitation depends on chaining with an application-credential impersonation flaw, patch any related application-credential vulnerabilities concurrently. Until patched, reduce exposure by restricting who can create application credentials and trusts - for example tighten the relevant Keystone policy rules (identity:create_application_credential, identity:create_trust) so untrusted member-role users cannot mint unrestricted application credentials, accepting the trade-off that legitimate automation relying on self-service credentials/trusts will break. Audit existing trusts and application credentials for unexpected admin-role delegations and revoke suspicious ones; note that because malicious actions are logged under the victim's identity, log review alone is unreliable for detection.
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in admin/server/api/download.js and lib/list/getCS
Keystone is a headless CMS for Node.js - built with GraphQL and React.`@keystone-6/core@3.0.0 || 3.0.1` users that use `
@keystone-6/core is a core package for Keystone 6, a content management system for Node.js. Rated critical severity (CVS
An arbitrary file upload vulnerability in the file upload module of Keystone v4.2.1 allows attackers to execute arbitrar
KeystoneJS before 4.0.0-beta.7 allows application-wide CSRF bypass by removing the CSRF parameter and value, aka SecureL
OpenStack Keystone 15.0.0 and 16.0.0 is affected by Data Leakage in the list credentials API. Rated high severity (CVSS
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allow
A cross-site scripting (XSS) vulnerability exists in fields/types/markdown/MarkdownType.js in KeystoneJS before 4.0.0-be
A flaw was found in Keystone. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. Public explo
OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticate
OpenStack Identity (Keystone) before 2014.1.1 does not properly handle when a role is assigned to a group that has the s
OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revo
Same weakness CWE-863 – Incorrect Authorization
View allSame technique Authentication Bypass
View allVendor StatusVendor
Share
External POC / Exploit Code
Leaving vuln.today