CVE-2013-2006

Published May 21st, 2013

View on NVD ↗

CVSS v3

N/A

CVSS v2

2.1

LOW

Affected

PROJECT

Description

OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by reading the log file.

openstack/keystone

OpenStack Identity (Keystone). Mirror of code maintained at opendev.org.

GitHub

712