Security Advisory

CVE-2014-0204

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-03 23:00:00

Last updated 2024-08-06 09:05:39

Assigner redhat

State PUBLISHED

Description

OpenStack Identity (Keystone) before 2014.1.1 does not properly handle when a role is assigned to a group that has the same ID as a user, which allows remote authenticated users to gain privileges that are assigned to a group with the same ID.

← Browse all CVEs View on cve.org ↗