CVE-2018-14432

In the Federation component of OpenStack Keystone before 11.0.4, 12.0.0, and 13.0.0, an authenticated "GET /v3/OS-FEDERATION/projects" request may bypass intended access restrictions on listing projects. An authenticated user may discover projects they have no authority to access, leaking all projects in the deployment and their attributes. Only Keystone with the /v3/OS-FEDERATION endpoint enabled via policy.json is affected.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 70%
VendorProductVersion
debiandebian_linux
9.0
openstackkeystone
𝑥
< 11.0.4
openstackkeystone
12.0.0
openstackkeystone
13.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
keystone
bullseye
2:18.0.0-3+deb11u1
fixed
bookworm
2:22.0.0-2
fixed
sid
2:26.0.0-1
fixed
trixie
2:26.0.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
keystone
focal
not-affected
eoan
not-affected
disco
not-affected
cosmic
not-affected
bionic
not-affected
xenial
not-affected
trusty
dne
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2018/07/25/2
http://www.securityfocus.com/bid/104930
https://access.redhat.com/errata/RHSA-2018:2523
https://access.redhat.com/errata/RHSA-2018:2533
https://access.redhat.com/errata/RHSA-2018:2543
https://www.debian.org/security/2018/dsa-4275
http://www.openwall.com/lists/oss-security/2018/07/25/2
http://www.securityfocus.com/bid/104930
https://access.redhat.com/errata/RHSA-2018:2523
https://access.redhat.com/errata/RHSA-2018:2533
https://access.redhat.com/errata/RHSA-2018:2543
https://www.debian.org/security/2018/dsa-4275