CVE-2017-2673 – An authorization-check flaw was discovered in federation configurations of the OpenStack I …

0

Vuln ID: CVE-2017-2673

Published:  2018-07-19  13:29:00Z

Description: An authorization-check flaw was discovered in federation configurations of the OpenStack Identity service (keystone). An authenticated federated user could request permissions to a project and unintentionally be granted all related roles including administrative roles.

Source: NVD.NIST.GOV