Published: 17/06/2014 Updated: 02/06/2020

CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8

VMScore: 534

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

OpenStack Identity (Keystone) prior to 2013.2.4, 2014.1 prior to 2014.1.2, and Juno before Juno-2 does not properly handle chained delegation, which allows remote authenticated users to gain privileges by leveraging a (1) trust or (2) OAuth token with impersonation enabled to create a new token with additional roles.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openstack keystone
suse cloud 3

Debian Bug report logs - #751454 keystone: CVE-2014-3476: privilege escalation through trust chained delegation Package: src:keystone; Maintainer for src:keystone is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 13 Jun 2014 04:48:02 UTC Severity ...

Several security issues were fixed in OpenStack Keystone ...

A flaw was found in keystone's chained delegation A trustee able to create a delegation from a trust or an OAuth token could misuse identity impersonation to bypass the enforced scope, possibly allowing them to obtain elevated privileges to the trustor's projects and roles ...

CWE-269 http://www.securityfocus.com/bid/68026 https://bugs.launchpad.net/keystone/+bug/1324592 http://www.openwall.com/lists/oss-security/2014/06/12/3 http://secunia.com/advisories/57886 http://secunia.com/advisories/59547 http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00031.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=751454 https://usn.ubuntu.com/2324-1/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2014-3476

CVE-2014-3476

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect