Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-89vf-n61h-k3b2

Summary

OpenStack Keystone does not invalidate existing tokens when granting or revoking roles
OpenStack Keystone before 2012.1.3 does not invalidate existing tokens when granting or revoking roles, which allows remote authenticated users to retain the privileges of the revoked roles.

Aliases

alias	CVE-2012-4413

alias	GHSA-mrxv-65rv-6hxq

Fixed_packages

url	pkg:deb/debian/keystone@2012.1.1-6?distro=trixie
purl	pkg:deb/debian/keystone@2012.1.1-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2012.1.1-6%3Fdistro=trixie

url pkg:deb/debian/keystone@2:18.0.0-3%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/keystone@2:18.0.0-3%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wj2-abbb-xqf6

vulnerability	VCID-93vc-hgec-nfe6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:18.0.0-3%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/keystone@2:22.0.2-0%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/keystone@2:22.0.2-0%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wj2-abbb-xqf6

vulnerability	VCID-93vc-hgec-nfe6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:22.0.2-0%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/keystone@2:27.0.0-3%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wj2-abbb-xqf6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:27.0.0-3%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/keystone@2:29.0.0-1?distro=trixie
purl	pkg:deb/debian/keystone@2:29.0.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.0-1%3Fdistro=trixie

url	pkg:deb/debian/keystone@2:29.0.0-2?distro=trixie
purl	pkg:deb/debian/keystone@2:29.0.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.0-2%3Fdistro=trixie

url	pkg:deb/debian/keystone@2:29.0.0-3?distro=trixie
purl	pkg:deb/debian/keystone@2:29.0.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.0-3%3Fdistro=trixie

url	pkg:deb/debian/keystone@2:29.0.1-1?distro=trixie
purl	pkg:deb/debian/keystone@2:29.0.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/keystone@2:29.0.1-1%3Fdistro=trixie

Affected_packages

url pkg:pypi/keystone@12.0.2

purl pkg:pypi/keystone@12.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@12.0.2

url pkg:pypi/keystone@12.0.3

purl pkg:pypi/keystone@12.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@12.0.3

url pkg:pypi/keystone@13.0.2

purl pkg:pypi/keystone@13.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.2

url pkg:pypi/keystone@13.0.3

purl pkg:pypi/keystone@13.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.3

url pkg:pypi/keystone@13.0.4

purl pkg:pypi/keystone@13.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@13.0.4

url pkg:pypi/keystone@14.0.0

purl pkg:pypi/keystone@14.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-6wj2-abbb-xqf6

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.0.0

url pkg:pypi/keystone@14.0.1

purl pkg:pypi/keystone@14.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-2n1f-h6m8-d7h7

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.0.1

url pkg:pypi/keystone@14.1.0

purl pkg:pypi/keystone@14.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.1.0

url pkg:pypi/keystone@14.2.0

purl pkg:pypi/keystone@14.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@14.2.0

url pkg:pypi/keystone@15.0.0.0rc1

purl pkg:pypi/keystone@15.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0.0rc1

url pkg:pypi/keystone@15.0.0.0rc2

purl pkg:pypi/keystone@15.0.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0.0rc2

url pkg:pypi/keystone@15.0.0

purl pkg:pypi/keystone@15.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.0

url pkg:pypi/keystone@15.0.1

purl pkg:pypi/keystone@15.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@15.0.1

url pkg:pypi/keystone@16.0.0.0rc1

purl pkg:pypi/keystone@16.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0.0rc1

url pkg:pypi/keystone@16.0.0.0rc2

purl pkg:pypi/keystone@16.0.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-w6e4-zd31-g7hu

vulnerability	VCID-wc5s-25xb-rqaa

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0.0rc2

url pkg:pypi/keystone@16.0.0

purl pkg:pypi/keystone@16.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-769v-tw47-rucm

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-gdk6-a746-6fac

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-qyjh-md45-hyhh

vulnerability	VCID-r25g-be38-b3be

vulnerability	VCID-rgkw-6ews-rked

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.0

url pkg:pypi/keystone@16.0.1

purl pkg:pypi/keystone@16.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.1

url pkg:pypi/keystone@16.0.2

purl pkg:pypi/keystone@16.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@16.0.2

url pkg:pypi/keystone@17.0.0.0rc1

purl pkg:pypi/keystone@17.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0.0rc1

url pkg:pypi/keystone@17.0.0.0rc2

purl pkg:pypi/keystone@17.0.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0.0rc2

url pkg:pypi/keystone@17.0.0

purl pkg:pypi/keystone@17.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.0

url pkg:pypi/keystone@17.0.1

purl pkg:pypi/keystone@17.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@17.0.1

url pkg:pypi/keystone@18.0.0.0rc1

purl pkg:pypi/keystone@18.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.0.0.0rc1

url pkg:pypi/keystone@18.0.0

purl pkg:pypi/keystone@18.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.0.0

url pkg:pypi/keystone@18.1.0

purl pkg:pypi/keystone@18.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@18.1.0

url pkg:pypi/keystone@19.0.0.0rc1

purl pkg:pypi/keystone@19.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0.0rc1

url pkg:pypi/keystone@19.0.0.0rc2

purl pkg:pypi/keystone@19.0.0.0rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0.0rc2

url pkg:pypi/keystone@19.0.0

purl pkg:pypi/keystone@19.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-p5un-b12x-tuh5

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@19.0.0

url pkg:pypi/keystone@20.0.0.0rc1

purl pkg:pypi/keystone@20.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@20.0.0.0rc1

url pkg:pypi/keystone@20.0.0

purl pkg:pypi/keystone@20.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@20.0.0

url pkg:pypi/keystone@21.0.0.0rc1

purl pkg:pypi/keystone@21.0.0.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@21.0.0.0rc1

url pkg:pypi/keystone@21.0.0

purl pkg:pypi/keystone@21.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-93vc-hgec-nfe6

vulnerability	VCID-9dhg-r711-yfg6

vulnerability	VCID-r25g-be38-b3be

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/keystone@21.0.0

url pkg:rpm/redhat/openstack-keystone@2012.1.2-4?arch=el6

purl pkg:rpm/redhat/openstack-keystone@2012.1.2-4?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ggr-pe4y-y3cn

vulnerability	VCID-89vf-n61h-k3b2

vulnerability	VCID-enq4-sb38-6kfz

vulnerability	VCID-s84r-551v-u7b6

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openstack-keystone@2012.1.2-4%3Farch=el6

References

reference_url

http://github.com/openstack/keystone/commit/58ac6691a21675be9e2ffb0f84a05fc3cd4d2e2e

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://github.com/openstack/keystone/commit/58ac6691a21675be9e2ffb0f84a05fc3cd4d2e2e

reference_url	http://osvdb.org/85484
reference_id
reference_type
scores
url	http://osvdb.org/85484

reference_url

https://access.redhat.com/errata/RHSA-2012:1378

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2012:1378

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4413.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4413.json

reference_url

https://access.redhat.com/security/cve/CVE-2012-4413

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2012-4413

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4413

reference_id

reference_type

scores

value	0.00428
scoring_system	epss
scoring_elements	0.62503
published_at	2026-04-18T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62346
published_at	2026-04-01T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62404
published_at	2026-04-02T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62435
published_at	2026-04-04T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62402
published_at	2026-04-07T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.6245
published_at	2026-04-08T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62467
published_at	2026-04-09T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62486
published_at	2026-04-11T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62475
published_at	2026-04-12T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62453
published_at	2026-04-13T12:55:00Z

value	0.00428
scoring_system	epss
scoring_elements	0.62497
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4413

reference_url

https://bugs.launchpad.net/keystone/+bug/1041396

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.launchpad.net/keystone/+bug/1041396

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=855491

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=855491

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4413
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4413

reference_url	http://secunia.com/advisories/50531
reference_id
reference_type
scores
url	http://secunia.com/advisories/50531

reference_url	http://secunia.com/advisories/50590
reference_id
reference_type
scores
url	http://secunia.com/advisories/50590

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/78478

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/78478

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-4413

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:N/I:P/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2012-4413

reference_url

https://opendev.org/openstack/keystone

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://opendev.org/openstack/keystone

reference_url

https://review.opendev.org/c/openstack/keystone/+/12870

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://review.opendev.org/c/openstack/keystone/+/12870

reference_url	https://review.opendev.org/c/openstack/keystone/+/12870/
reference_id
reference_type
scores
url	https://review.opendev.org/c/openstack/keystone/+/12870/

reference_url

https://web.archive.org/web/20121114023848/http://www.securityfocus.com/bid/55524

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20121114023848/http://www.securityfocus.com/bid/55524

reference_url

http://www.openwall.com/lists/oss-security/2012/09/12/7

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2012/09/12/7

reference_url	http://www.securityfocus.com/bid/55524
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/55524

reference_url

http://www.ubuntu.com/usn/USN-1564-1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.ubuntu.com/usn/USN-1564-1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687428
reference_id	687428
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687428

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:keystone:2012.1.3:::::::*
reference_id	cpe:2.3:a:openstack:keystone:2012.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:keystone:2012.1.3:::::::*

reference_url

https://github.com/advisories/GHSA-mrxv-65rv-6hxq

reference_id

GHSA-mrxv-65rv-6hxq

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-mrxv-65rv-6hxq

reference_url	https://usn.ubuntu.com/1564-1/
reference_id	USN-1564-1
reference_type
scores
url	https://usn.ubuntu.com/1564-1/

Weaknesses

cwe_id	613
name	Insufficient Session Expiration
description	According to WASC, Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-89vf-n61h-k3b2

Vulnerability Instance