Skip to content

OpenStack Identity (Keystone) Denial of Service

Moderate severity GitHub Reviewed Published May 13, 2022 to the GitHub Advisory Database • Updated May 24, 2024

Package

pip keystone (pip)

Affected versions

< 8.0.0a0

Patched versions

8.0.0a0

Description

OpenStack Identity (Keystone) before 2013.1 allows remote attackers to cause a denial of service (memory consumption and crash) via multiple long requests.

References

Published by the National Vulnerability Database Jun 2, 2014
Published to the GitHub Advisory Database May 13, 2022
Reviewed May 14, 2024
Last updated May 24, 2024

Severity

Moderate

EPSS score

1.166%
(85th percentile)

Weaknesses

CVE ID

CVE-2013-2014

GHSA ID

GHSA-7332-36h8-8jh8

Source code

No known source code
Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.