PT-2025-47038 · Canonical · Keystone
Published
2025-11-04
·
Updated
2025-11-04
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Kay discovered that OpenStack Keystone incorrectly handled the ec2tokens
and s3tokens APIs. A remote attacker could possibly use this issue to
obtain unauthorized access and escalate privileges.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Keystone