pkg:PyPI/python-keystoneclient

All known vulnerabilities

• CRITICAL9.8CVE-2013-2166Inadequate Encryption Strength in python-keystoneclient
  >= 0.2.3, < 0.3.0
• CRITICAL9.8CVE-2013-2166Inadequate Encryption Strength in python-keystoneclient
  >= 0.2.3, < 0.3.0
• CRITICAL9.8Insufficient Verification of Data Authenticity in python-keystoneclient
  >= 0.2.3, < 0.3.0
• CRITICAL9.8Insufficient Verification of Data Authenticity in python-keystoneclient
  >= 0.2.3, < 0.3.0
• HIGH7.5python-keystoneclient missing expiration check in PKI token validation
  from 0, < 0.2.4
• HIGH7.5python-keystoneclient missing expiration check in PKI token validation
  from 0, < 0.2.4
• HIGH7.5OpenStack keystonemiddleware and python-keystoneclient vulnerable to man-in-the-middle attacks
  from 0, < 1.4.0
• HIGH7.5OpenStack keystonemiddleware and python-keystoneclient vulnerable to man-in-the-middle attacks
  from 0, < 1.4.0
• MEDIUM6.0python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware
  from 0, < 0.7.0
• MEDIUM6.0python-keystoneclient vulnerable to context confusion in Keystone auth_token middleware
  from 0, < 0.7.0
• MEDIUM5.9OpenStack keystonemiddleware does not verify certificate
  from 0, < 0.11.0
• MEDIUM5.9OpenStack keystonemiddleware does not verify certificate
  from 0, < 0.11.0, >= 1.0, < 1.2.0
• MEDIUM5.9OpenStack Keystone and other components vulnerable to Improper Certificate Validation
  from 0, < 0.4.0
• MEDIUM4.3OpenStack Nova uses insecure keystone middleware tmpdir by default
  from 0, < 0.2.4
• LOW2.9python-keystoneclient unsecure user password update
  from 0, < 0.2.4
• LOW2.9python-keystoneclient unsecure user password update
  from 0, < 0.2.4