CVE-2014-0204 is a vulnerability in OpenStack Keystone
Published on November 3, 2014
OpenStack Identity (Keystone) before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID.
Products Associated with CVE-2014-0204
Want to know whenever a new CVE is published for OpenStack Keystone? stack.watch will email you.
Exploit Probability
EPSS
0.35%
Percentile
57.28%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.