CVE-2013-4294 is a vulnerability in OpenStack Keystone
Published on September 23, 2013

The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token.

Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2013-4294

Want to know whenever a new CVE is published for OpenStack Keystone? stack.watch will email you.

OpenStack Keystone

Exploit Probability

EPSS

0.80%

Percentile

73.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2013-4294 is a vulnerability in OpenStack KeystonePublished on September 23, 2013

Products Associated with CVE-2013-4294

Exploit Probability

CVE-2013-4294 is a vulnerability in OpenStack Keystone
Published on September 23, 2013