Security Advisory

CVE-2013-4477

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-11-02 19:00:00

Last updated 2024-08-06 16:45:14

Assigner redhat

State PUBLISHED

Description

The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to gain privileges.

← Browse all CVEs View on cve.org ↗