{"id":"GHSA-gwvq-rgqf-993f","summary":"python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware","details":"A context confusion vulnerability was identified in Keystone auth_token middleware (shipped in python-keystoneclient) before 0.7.0. By doing repeated requests, with sufficient load on the target system, an authenticated user may in certain situations assume another authenticated user's complete identity and multi-tenant authorizations, potentially resulting in a privilege escalation. Note that it is related to a bad interaction between eventlet and python-memcached that should be avoided if the calling process already monkey-patches \"thread\" to use eventlet. Only keystone middleware setups using auth_token with memcache are vulnerable.","aliases":["CVE-2014-0105","PYSEC-2014-70"],"modified":"2024-10-25T21:15:01.915277Z","published":"2022-05-17T00:13:54Z","database_specific":{"cwe_ids":["CWE-522"],"github_reviewed":true,"severity":"LOW","github_reviewed_at":"2023-08-03T23:09:34Z","nvd_published_at":"2014-04-15T14:55:00Z"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-0105"},{"type":"WEB","url":"https://bugs.launchpad.net/python-keystoneclient/+bug/1282865"},{"type":"PACKAGE","url":"https://github.com/openstack/python-keystoneclient"},{"type":"WEB","url":"https://github.com/pypa/advisory-database/tree/main/vulns/python-keystoneclient/PYSEC-2014-70.yaml"},{"type":"WEB","url":"https://review.opendev.org/c/openstack/python-keystoneclient/+/81078"},{"type":"WEB","url":"http://rhn.redhat.com/errata/RHSA-2014-0382.html"},{"type":"WEB","url":"http://rhn.redhat.com/errata/RHSA-2014-0409.html"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2014/03/27/4"}],"affected":[{"package":{"name":"python-keystoneclient","ecosystem":"PyPI","purl":"pkg:pypi/python-keystoneclient"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.7.0"}]}],"versions":["0.1.1","0.1.2","0.1.3","0.2.0","0.2.1","0.2.2","0.2.3","0.2.4","0.2.5","0.3.0","0.3.1","0.3.2","0.4.0","0.4.1","0.4.2","0.5.0","0.5.1","0.6.0"],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gwvq-rgqf-993f/GHSA-gwvq-rgqf-993f.json","last_known_affected_version_range":"\u003c= 0.6.0"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L"},{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:L"}]}