CVE-2020-12692

CVE Database · CVE-2020-12692

CVE-2020-12692

· MEDIUMModified

CVSS v3.1

5.4

EPSS

0.70%

Published

May 6, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then use it to reissue an OpenStack token an unlimited number of times.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Weaknesses (CWE)

CWE-294CWE-347

Affected Products (3)

openstack · keystone (up to 15.0.1)vulnerable

openstack · keystonevulnerable

canonical · ubuntu_linuxvulnerable

References (10)

http://www.openwall.com/lists/oss-security/2020/05/07/1

Mailing ListThird Party Advisory

https://bugs.launchpad.net/keystone/+bug/1872737