A flaw exists in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
python novajoin |