Openstack Identity
Monthly
The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.
The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.