CVE-2020-12692
OpenStack Keystone does not check signature TTL of the EC2 credential auth method
5.4
MEDIUM
CVSS 3.1
EPSS 0.14%
Description
An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then use it to reissue an OpenStack token an unlimited number of times.
How to fix CVE-2020-12692
To remediate CVE-2020-12692, upgrade the affected package to a fixed version below.
- —upgrade to 2:17.0.0~rc2-1 or later
- —upgrade to 16.0.0 or later
- —upgrade to 15.0.1 or later
Is CVE-2020-12692 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (3)
- from 0, < 2:17.0.0~rc2-1
- >= 16.0.0.0rc1, < 16.0.0
- from 0, < 15.0.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
| osv | CVSS 3.1 | MEDIUM5.4 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N |