NVD Vulnerability Detail

CVE-2020-12691

Summary	An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that they have a specified role on, and then perform an update to the credential user and project, allowing them to masquerade as another user. This potentially allows a malicious user to act as the admin on a project another user has the admin role on, which can effectively grant that user global admin privileges.
Publication Date	May 7, 2020, 9:15 a.m.
Registration Date	Jan. 26, 2021, 11:51 a.m.
Last Update	Nov. 21, 2024, 2 p.m.

Affected software configurations

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

Related information, measures and tools

No	URL	タグ
1	http://www.openwall.com/lists/oss-security/2020/05/07/2	Mailing List Third Party Advisory
2	https://bugs.launchpad.net/keystone/+bug/1872733	Patch Third Party Advisory
3	https://lists.apache.org/thread.html/re237267da268c690df5e1c6ea6a38a7fc11617725e8049490f58a6fa%40%3Ccommits.druid.apache.org%3E
4	https://lists.apache.org/thread.html/re4ffc55cd2f1b55a26e07c83b3c22c3fe4bae6054d000a57fb48d8c2%40%3Ccommits.druid.apache.org%3E
5	https://security.openstack.org/ossa/OSSA-2020-004.html	Vendor Advisory
6	https://usn.ubuntu.com/4480-1/	Third Party Advisory
7	https://www.openwall.com/lists/oss-security/2020/05/06/5	Mailing List Third Party Advisory
8	http://www.openwall.com/lists/oss-security/2020/05/07/2	Mailing List Third Party Advisory
9	https://www.openwall.com/lists/oss-security/2020/05/06/5	Mailing List Third Party Advisory
10	https://usn.ubuntu.com/4480-1/	Third Party Advisory
11	https://security.openstack.org/ossa/OSSA-2020-004.html	Vendor Advisory
12	https://lists.apache.org/thread.html/re4ffc55cd2f1b55a26e07c83b3c22c3fe4bae6054d000a57fb48d8c2%40%3Ccommits.druid.apache.org%3E
13	https://lists.apache.org/thread.html/re237267da268c690df5e1c6ea6a38a7fc11617725e8049490f58a6fa%40%3Ccommits.druid.apache.org%3E
14	https://bugs.launchpad.net/keystone/+bug/1872733	Patch Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-863	不正な認証	https://cwe.mitre.org/data/definitions/863.html

JVN Vulnerability Information

OpenStack Keystone における重要なデータの暗号化の欠如に関する脆弱性

Title	OpenStack Keystone における重要なデータの暗号化の欠如に関する脆弱性
Summary	OpenStack Keystone には、重要なデータの暗号化の欠如に関する脆弱性が存在します。
Possible impacts	情報を取得される、および情報を改ざんされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	May 6, 2020, midnight
Registration Date	June 8, 2020, 2:26 p.m.
Last Update	June 8, 2020, 2:26 p.m.

Affected System

OpenStack

Openstack Keystone 15.0.1 未満

Openstack Keystone 16.0.0

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2020-12691	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12691
National Vulnerability Database (NVD)
2	CVE-2020-12691	https://nvd.nist.gov/vuln/detail/CVE-2020-12691

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-311	https://cwe.mitre.org/data/definitions/311.html

ベンダー情報

No	Name	URL
Launchpad
1	[OSSA-2020-004] Keystone V3 /credentials endpoint policy logic allows to change credentials owner or target project ID (CVE-2020-12691)	https://bugs.launchpad.net/keystone/+bug/1872733
OpenStack Security Advisories
2	OSSA-2020-004	https://security.openstack.org/ossa/OSSA-2020-004.html

Change Log

No	Changed Details	Date of change
1	[2020年06月08日] 掲載	June 8, 2020, 2:26 p.m.