CNNVD-202511-1929 Information

CNNVD ID

CNNVD-202511-1929

Related CVE

CVE-2025-65073

• CNNVD Published: 2025-11-17

Description (Chinese)

Keystone是OpenStack开源的一款强大的CMS。用于帮助您比任何其他 Cms 或应用程序框架更快地构建和扩展。 Keystone 26.0.1之前版本、27.0.0版本和28.0.0版本存在安全漏洞，该漏洞源于允许带有有效AWS签名的请求提供授权。

Description (English)

Keystone is a powerful CMS from OpenStack open source. To help you build and expand more quickly than any other Cms or application framework. Pre-Keystone 26.0.1, 27.0.0 and 28.0.0 have security loopholes, which stem from requests for authorization with valid AWS signatures.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

OpenStack

Published

2025-11-17

Last Modified

2026-02-24

References

https://www.openwall.com/lists/oss-security/2025/11/04/2 http://www.openwall.com/lists/oss-security/2025/11/17/6

Patch

https://www.openstack.org/software/openstack-flamingo