pkg:PyPI/keystone

57 total CVEsCRITICAL1HIGH19MEDIUM23LOW1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.1CVE-2021-3563keystone - security update
    from 0, <= 21.0.0
  • HIGH8.8CVE-2020-12691OpenStack Keystone V3 /credentials endpoint policy logic allows to change credentials owner or target project ID
    from 0, < 15.0.1
  • HIGH8.8CVE-2020-12691OpenStack Keystone V3 /credentials endpoint policy logic allows to change credentials owner or target project ID
    from 0, < 15.0.1
  • HIGH8.8CVE-2020-12689keystone - security update
    from 0, < 15.0.1
  • HIGH8.8CVE-2020-12689keystone - security update
    from 0, < 15.0.1
  • HIGH8.8CVE-2019-19687OpenStack Keystone Credential Leakage
    >= 15.0.0, < 15.0.1
  • HIGH8.8CVE-2019-19687OpenStack Keystone Credential Leakage
    from 0, < 16.0.1
  • HIGH8.8CVE-2020-12690Insufficient Session Expiration in OpenStack Keystone
    from 0, < 15.0.1
  • HIGH8.8CVE-2020-12690Insufficient Session Expiration in OpenStack Keystone
    from 0, < 15.0.1
  • HIGH7.9CVE-2026-43001OpenStack Keystone has an Incorrect Authorization Issue
    >= 13.0.0, <= 29.0.1
  • HIGH7.7CVE-2026-40683OpenStack Keystone: LDAP identity backend does not convert enabled attribute to boolean
    from 0, < 28.0.1
  • HIGH7.5CVE-2025-65073keystone - security update
    from 0, < 26.0.1
  • HIGH7.5CVE-2021-38155OpenStack Keystone allows information disclosure during account locking
    >= 10.0, < 16.0.2
  • HIGH7.5CVE-2012-3542OpenStack Keystone Allows Remote User Account Creation
    from 0, < 2012.1
  • HIGH7.5CVE-2012-3542OpenStack Keystone Allows Remote User Account Creation
    from 0, < 5438d3b5a219d7c8fa67e66e538d325a61617155, < c13d0ba606f7b2bdc609a7f388334e5efec3f3aa | from 0
  • HIGH7.5CVE-2014-2828OpenStack Identity (Keystone) DoS through V3 API authentication chaining
    from 0, < 8.0.0a0
  • HIGH7.5CVE-2014-2828OpenStack Identity (Keystone) DoS through V3 API authentication chaining
    from 0, < 8.0.0a0
  • HIGH7.5CVE-2015-7546OpenStack Identity Keystone and keystonemiddleware Insufficiently Protected Credentials
    >= 9.0.0.0b1, < 9.0.0.0b2
  • HIGH7.2CVE-2017-2673OpenStack Identity service (keystone) Incorrect Authorization
    >= 9.0.0, <= 9.3.0
  • HIGH7.2CVE-2017-2673OpenStack Identity service (keystone) Incorrect Authorization
    >= 9.0.0, <= 9.3.0
  • MEDIUM6.5CVE-2014-5252OpenStack Identity (Keystone) UUID v2 tokens does not expire with revocation events
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-5252OpenStack Identity (Keystone) UUID v2 tokens does not expire with revocation events
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-5253OpenStack Keystone Domain-scoped tokens don't get revoked
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-5253OpenStack Keystone Domain-scoped tokens don't get revoked
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-5251OpenStack Identity (Keystone) Multiple vulnerabilities in revocation events
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-5251OpenStack Identity (Keystone) Multiple vulnerabilities in revocation events
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-2237OpenStack Identity (Keystone) Trustee token revocations does not work with memcache backend
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2014-2237OpenStack Identity (Keystone) Trustee token revocations does not work with memcache backend
    from 0, < 8.0.0a0
  • MEDIUM6.5CVE-2013-0270OpenStack Keystone Denial of Service vulnerability via a large HTTP request
    from 0, < 8.0.0a0
  • MEDIUM5.9CVE-2012-5563OpenStack Keystone Insufficient token expiration
    from 0, < 38c7e46a640a94da4da89a39a5a1ea9c081f1eb5, < f9d4766249a72d8f88d75dcf1575b28dd3496681 | from 0
  • MEDIUM5.9CVE-2012-5563OpenStack Keystone Insufficient token expiration
    from 0, < 8.0.0
  • MEDIUM5.9CVE-2013-2255OpenStack Keystone and other components vulnerable to Improper Certificate Validation
    from 0, < 8.0.0a0
  • MEDIUM5.4CVE-2020-12692OpenStack Keystone does not check signature TTL of the EC2 credential auth method
    >= 16.0.0.0rc1, < 16.0.0
  • MEDIUM5.4CVE-2020-12692OpenStack Keystone does not check signature TTL of the EC2 credential auth method
    from 0, < 15.0.1
  • MEDIUM5.4CVE-2012-5571OpenStack Keystone intended authorization restrictions bypass
    from 0, < 8.0.0a0
  • MEDIUM5.3CVE-2013-4294OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token
    >= 2012.2.0, < 2013.1.4
  • MEDIUM5.3CVE-2013-4294OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI token
    >= 2012.2.0, < 2013.1.4
  • MEDIUM5.3CVE-2013-1865OpenStack Keystone Improper Authentication vulnerability
    >= 2012.2, < 2012.2.4
  • MEDIUM5.3CVE-2013-1865OpenStack Keystone Improper Authentication vulnerability
    >= 2012.2, < 2012.2.4
  • MEDIUM4.3CVE-2016-4911OpenStack Identity Keystone Improper Access Control
    >= 9.0.0, < 9.0.1
  • MEDIUM4.3CVE-2016-4911OpenStack Identity Keystone Improper Access Control
    >= 9.0.0, < 9.0.1
  • MEDIUM4.3CVE-2013-2059OpenStack Identity (Keystone) improper revoking of the authentication token when deleting a user
    from 0, < 8.0.0a0
  • MEDIUM4.3CVE-2013-2059OpenStack Identity (Keystone) improper revoking of the authentication token when deleting a user
    from 0, < 8.0.0a0
  • LOW3.5CVE-2026-33551OpenStack Keystone: Restricted application credentials can create EC2 credentials
    >= 14.0.0, < 26.1.1
  • CVE-2012-3426OpenStack Keystone token expiration issues
    from 0, < 8.0.0a0
  • CVE-2013-4477OpenStack Identity Keystone Privilege Escalation vulnerability
    from 0, < 8.0.0a0
  • CVE-2013-2006OpenStack Keystone Sensitive information disclosure via log files
    from 0, < 8.0.0a0
  • CVE-2012-4413OpenStack Keystone does not invalidate existing tokens when granting or revoking roles
    from 0, < 2012.1.3
  • CVE-2012-4457OpenStack Keystone Token authorization for a user in a disabled tenant is allowed
    from 0, < 8.0.0a0
  • CVE-2012-4456OpenStack Keystone Improper Authentication vulnerability
    >= 2012.1, < 2012.1.2
  • CVE-2015-3646OpenStack Keystone Logs Passwords
    >= 2011.3, < 2014.1.5
  • CVE-2014-3621OpenStack Identity Keystone Exposure of Sensitive Information
    from 0, < 8.0.0a0
  • CVE-2014-0204OpenStack Identity Keystone Improper Privilege Management
    from 0, < 8.0.0a0
  • CVE-2014-3476OpenStack Identity Keystone is vulnerable to Block delegation escalation of privilege
    from 0, < 8.0.0a0
  • CVE-2013-2014OpenStack Identity (Keystone) Denial of Service
    from 0, < 8.0.0a0
  • CVE-2013-0282OpenStack Keystone allows context-dependent attackers to bypass access restrictions
    from 0, < 8.0.0a0
  • CVE-2018-20170** DISPUTED ** OpenStack Keystone through 14.0.1 has a user enumeration vulnerability because invalid usernames have much faster responses…
    from 0, < 14.1.0