Name of the Vulnerable Software and Affected Versions OpenStack Identity (Keystone) version 2013.1.1

Description The issue allows local users to obtain sensitive information by reading the log file when DEBUG mode logging is enabled. Specifically, it logs the admin token and LDAP password in plaintext.

Recommendations For OpenStack Identity (Keystone) version 2013.1.1, consider disabling DEBUG mode logging to prevent sensitive information from being logged in plaintext. As a temporary workaround, restrict access to the log file to minimize the risk of exploitation.