Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi keystone Security Advisories
Loading...
Critical
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 14.3
Published: almost 2 years ago
GSA_kwCzR0hTQS1jYzk5LXdobTUtbW1xM84AAufw
Openstack Keystone Incorrect Authorization vulnerabilityEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 14.3
Published: almost 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: about 2 years ago
GSA_kwCzR0hTQS00MjI1LTk3cHItcnI1Ms4AApcG
OpenStack Keystone allows information disclosure during account lockingEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 11.8
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
GSA_kwCzR0hTQS00NDI3LTdmM3ctbXF2Ns4AAkol
OpenStack Keystone V3 /credentials endpoint policy logic allows to change credentials owner or target project IDEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: about 2 years ago
GSA_kwCzR0hTQS1ycXcyLWhocmYtNzkzNs4AAkok
OpenStack Keystone does not check signature TTL of the EC2 credential auth methodEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 8.5
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
GSA_kwCzR0hTQS1jaGd3LTM2eHYtNDdjd84AAkoc
OpenStack Keystone EC2 and/or credential endpoints are not protected from a scoped contextEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
GSA_kwCzR0hTQS0yajIzLWZ3cW0tbWd3cs4AAi4u
OpenStack Keystone Credential LeakageEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1nZjJxLWoycXEtcGpmMs4AAfgV
OpenStack Keystone Allows Remote User Account CreationEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS01cXBwLXY1NmYtbXFmbc4AAe6w
OpenStack Identity (Keystone) allows remote attackers to bypass intended access restrictions via revoked PKI tokenEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS0yMnE2LXd3cTctMmpqOc4AAe3p
OpenStack Keystone Improper Authentication vulnerabilityEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1mODg5LXdmd20tNnA3bc4AAeuL
OpenStack Identity Keystone Privilege Escalation vulnerabilityEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Low
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1yeHJtLXh2cDQtanF2aM4AAeks
OpenStack Keystone Sensitive information disclosure via log filesEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS12OGZxLWdxOWotM3Y3aM4AAePA
OpenStack Identity (Keystone) UUID v2 tokens does not expire with revocation eventsEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS03N3c4LXF2OG0tMzg2aM4AAeO6
OpenStack Keystone Domain-scoped tokens don't get revokedEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1nbXZwLTVyZjktbXhjbc4AAeO2
OpenStack Identity (Keystone) Multiple vulnerabilities in revocation eventsEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS0yM3g5LThoeHItOTc4Y84AAdzY
OpenStack Identity (Keystone) Trustee token revocations does not work with memcache backendEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS02bXYzLXAyZ3Itd2dxZs4AAdiZ
OpenStack Identity (Keystone) DoS through V3 API authentication chainingEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 6.7
Published: about 2 years ago
GSA_kwCzR0hTQS1mODJtLXczcDMtY2dwM84AAc_U
OpenStack Identity Keystone Improper Access ControlEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 6.7
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1tcnh2LTY1cnYtNmh4cc4AAaC4
OpenStack Keystone does not invalidate existing tokens when granting or revoking rolesEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS13NjZwLTc4ZzQtbXI3Z84AAZ-d
OpenStack Keystone Insufficient token expirationEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1oajg5LXFteDktOHFtaM4AAZ5u
OpenStack Identity (Keystone) improper revoking of the authentication token when deleting a userEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1tZjk4LXIyZ2YtMngzd84AAU0b
OpenStack Keystone Improper Authentication vulnerabilityEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone, keystonemiddleware
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: about 2 years ago
GSA_kwCzR0hTQS04YzR3LXY2NXAtanZjds4AAQd3
OpenStack Identity Keystone and keystonemiddleware Insufficiently Protected CredentialsEcosystems: pypi
Packages: keystone, keystonemiddleware
Source: GitHub Advisory Database
Blast Radius: 19.6
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS04djhmLXZjNzItcG1oY84AAQdq
OpenStack Identity Keystone Exposure of Sensitive InformationEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1jNHA5LTg3aDMtN3ZyNM4AAQdG
OpenStack Identity Keystone Improper Privilege ManagementEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS1qd3B3LXBwajUtN2g0d84AAQdw
OpenStack Keystone Logs PasswordsEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS0yNzR2LXI5NDctdjM0cs4AAQdC
OpenStack Identity Keystone is vulnerable to Block delegation escalation of privilegeEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS03MzMyLTM2aDgtOGpoOM4AAQco
OpenStack Identity (Keystone) Denial of ServiceEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 11.3
Published: about 2 years ago
GSA_kwCzR0hTQS1qMzZtLWh2NDMtN3c3bc3uGg
OpenStack Identity service (keystone) Incorrect AuthorizationEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 11.3
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS00cHBqLTRwNHYtamY0cM3iVw
OpenStack Keystone Denial of Service vulnerability via a large HTTP requestEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: keystone, neutron, cinder, python-keystoneclient
Source: GitHub Advisory Database
Blast Radius: 20.6
Published: about 2 years ago
GSA_kwCzR0hTQS1xaDJ4LWhwZjktY2YyZ83gDQ
OpenStack Keystone and other components vulnerable to Improper Certificate ValidationEcosystems: pypi
Packages: keystone, neutron, cinder, python-keystoneclient
Source: GitHub Advisory Database
Blast Radius: 20.6
Published: about 2 years ago
High
Ecosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZtOHAteDRxdy1naDVq
Insufficient Session Expiration in OpenStack KeystoneEcosystems: pypi
Packages: keystone
Source: GitHub Advisory Database
Blast Radius: 13.8
Published: about 3 years ago
Statistics
Advisories: 19,584
Packages: 8,642
Repositories: 3
Ecosystems: 12
Packages: 8,642
Repositories: 3
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
apache-airflow
82
django
80
ansible
63
salt
55
Plone
52
apache-superset
51
nova
47
mlflow
46
plone
43
rdiffweb
42
Pillow
41
vyper
38
Django
36
matrix-synapse
35
moin
35
keystone
31
opencv-contrib-python
30
opencv-python
30
glance
20
gradio
18
langchain
18
cobbler
17
mercurial
17
PaddlePaddle
17
neutron
16
pillow
16
paddlepaddle
15
cryptography
15
notebook
15
modoboa
14
pyload-ng
14
pyftpdlib
14
ethyca-fides
13
OctoPrint
13
vantage6
13
calibreweb
12
urllib3
12
swift
12
wagtail
12
roundup
12
zenml
11
twisted
11
aiohttp
11
onionshare-cli
11
horizon
11
nautobot
10
trytond
10
Flask-AppBuilder
10
opencv-contrib-python-headless
9
opencv-python-headless
9
zope
9
ryu
9
waitress
9
cinder
9
kiwitcms
9
Zope
9
python-keystoneclient
8
aubio
8
sentry
8
trac
8
numpy
8
label-studio
8
pysaml2
7
lief
7
litellm
7
scrapy
7
ipython
7
pip
7
matrix-sydent
7
jupyter-server
7
pgadmin4
7
lollms
7
Zope2
6
web2py
6
tuf
6
lxml
6
tornado
6
mailman
6
requests
6
graphite-web
6
apache-airflow-providers-apache-hive
6
yt-dlp
6
inventree
6
mindsdb
6
Moin
6
pyspark
5
nltk
5
whoogle-search
5
ckan
5
paramiko
5
omero-web
5
torchserve
5
Jinja2
5
python-gnupg
5
lmdb
5
saleor
5
Products.CMFPlone
5
oauthenticator
5
feedparser
5
bleach
5
transformers
4
markdown2
4
keylime
4
FreeTAKServer-UI
4
Keystone
4
httpie
4
buildbot
4
nvflare
4
tripleo-heat-templates
4
pretix
4
esphome
4
langchain-experimental
4
GitPython
4
datasette
4
ansible-core
4
dbt-core
4
PyPDF2
4
starlette
4
Nova
4
Flask-Security-Too
4
Werkzeug
4
jupyterhub
4
barbican
4
grpc
4
grpcio
4
werkzeug
4
qutebrowser
4
Radicale
4
jwcrypto
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
Scrapy
4
bottle
4
aws-iot-device-sdk-v2
4
awsiotsdk
4
Pygments
4
Weblate
4
reportlab
4
Kallithea
3
sickrage
3
setuptools
3
apache-libcloud
3
jupyterlab
3
ajenti
3
onnx
3
protobuf
3
mitmproxy
3
pyarrow
3
httplib2
3
python-jose
3
certifi
3
asyncssh
3
sosreport
3
scikit-learn
3
changedetection.io
3
vanna
3
pandasai
3
ray
3
apache-airflow-providers-apache-spark
3
sanic
3
ydata-profiling
3
mayan-edms
3
homeassistant
3
fava
3
indy-node
3
aim
3
rsa
3
io.grpc:grpc-protobuf
3
openvpn-monitor
3
apache-iotdb
3
gerapy
3
asyncua
3
wger
3
bitlyshortener
3
pywasm3
3
keyring
3
Mezzanine
3
SQLAlchemy
3
dtale
3
Products.PluggableAuthService
3
copyparty
3
mistune
3
pyyaml
3
indico
3
flask
3
keystonemiddleware
3
localstack
3
poetry
3
streamlit
3
ecdsa
3
clearml
3
plone.app.event
3
torch
3
sqlparse
3
Red-DiscordBot
3
docassemble.webapp
3
tinymce
3
llama-index
3
Filter by Repository