VDB
DEBIAN-CVE-2021-3563
DEBIAN-CVE-2021-3563
PUBLISHED
CVSS 7.400000095367432 HIGH
A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity.
Risk Scores
CVSS v3.1
7.400000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | keystone | 0, 0, 0 |
| Debian:12 | keystone | 2:25.0.0-3, 2:26.0.0-3, 2:26.0.0-4 |
| Debian:11 | keystone | 2:21.0.0-1, 2:21.0.0-3, 2:21.0.0~rc1-1 |
| Debian:13 | keystone | 0, 0, 0 |
Timeline
- Aug 26, 2022 CVE Published
- Apr 28, 2026 CVE Updated