CVE-2012-5571 Openstack — Exploit & Vulnerability Details MEDIUM

Parameter	Value
CVSS	5.4 (MEDIUM)
Type	CWE-639 (Authorization Bypass), CWE-255
Vendor	Openstack
Public PoC	No

A flaw was found in OpenStack Keystone. This vulnerability allows remote authenticated users to bypass intended authorization restrictions. This occurs because OpenStack Keystone does not properly handle EC2 (Elastic Compute Cloud) tokens when a user's role has been removed from a tenant.

An attacker can leverage a token associated with a removed user role to gain unauthorized access.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

Low

Partial data leak

Integrity

Low

Partial data modification

Availability

None

No disruption

CVSS Vector v3.1

Weakness Type (CWE)

CWE-639 Authorization Bypass

CWE-255

Vulnerable Products 2

Configuration	From (including)	Up to (excluding)
Openstack Essex cpe:2.3:a:openstack:essex:2012.1:::::::*	—	—
Openstack Folsom cpe:2.3:a:openstack:folsom:2012.2:::::::*	—	—

References 15

http://lists.fedoraproject.org/pipermail/package-announce/2012-December/094286.…

Menu

CVE-2012-5571

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products 2

References 15

Related Vulnerabilities

CVE-2026-28370

CVE-2013-0270

CVE Details

Editor's Choice

Stay informed on cybersecurity