Security Advisory

CVE-2019-10138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-30 16:16:51

Last updated 2024-08-04 22:10:10

Assigner redhat

State PUBLISHED

Description

A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens.

← Browse all CVEs View on cve.org ↗