Openstack Python-keystoneclient — known CVE vulnerabilities
Every CVE whose affected-product data names Openstack Python-keystoneclient, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2014-0105 — CVSS 6.0 (medium): The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly…
CVE-2013-2104 — CVSS 5.5 (medium): python-keystoneclient before 0.2.4, as used in OpenStack Keystone (Folsom), does not properly check expiry for PKI tokens, which allows…
CVE-2015-1852 — CVSS 4.3 (medium): The s3_token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification…
CVE-2014-7144 — CVSS 4.3 (medium): OpenStack keystonemiddleware (formerly python-keystoneclient) 0.x before 0.11.0 and 1.x before 1.2.0 disables certification verification…
CVE-2013-2013 — CVSS 2.1 (low): The user-password-update command in python-keystoneclient before 0.2.4 accepts the new password in the --password argument, which allows…