CVE-2013-2166
Summary
| CVE | CVE-2013-2166 |
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-12-10 15:15:00 UTC |
| Updated | 2023-02-13 00:28:00 UTC |
| Description | python-keystoneclient version 0.2.3 to 0.2.5 has middleware memcache encryption bypass |
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Red Hat Customer Portal |
MISC |
access.redhat.com |
|
| [SECURITY] Fedora 19 Update: python-keystoneclient-0.2.3-7.fc19 |
MISC |
lists.fedoraproject.org |
Mailing List, Release Notes, Third Party Advisory |
| Bug 824818 – VUL-0: python-keystoneclient: CVE-2013-2166, CVE-2013-2167: bypass encryption or signing security strategy |
MISC |
bugzilla.suse.com |
Issue Tracking, Third Party Advisory |
| oss-security - [OSSA 2013-017] Issues in Keystone middleware memcache signing/encryption
feature (CVE-2013-2166, CVE-2013-2167) |
MISC |
www.openwall.com |
Issue Tracking, Mailing List, Third Party Advisory |
| 974271 – (CVE-2013-2166, CVE-2013-2167) CVE-2013-2166 CVE-2013-2167 python-keystoneclient: middleware memcache encryption and signing bypass |
MISC |
bugzilla.redhat.com |
Exploit, Issue Tracking, Third Party Advisory |
| CVE-2013-2166 |
MISC |
security-tracker.debian.org |
Third Party Advisory |
| 974271 – (CVE-2013-2166, CVE-2013-2167) CVE-2013-2166 CVE-2013-2167 python-keystoneclient: middleware memcache encryption and signing bypass |
MISC |
bugzilla.redhat.com |
|
| access.redhat.com/security/cve/CVE-2013-2166 |
MISC |
access.redhat.com |
|
| CVE-2013-2166 - Red Hat Customer Portal |
MISC |
access.redhat.com |
Third Party Advisory |
| OpenStack python-keystoneclient CVE-2013-2166 Security Bypass Vulnerability |
MISC |
www.securityfocus.com |
Third Party Advisory, VDB Entry |
| Red Hat Customer Portal |
MISC |
rhn.redhat.com |
Third Party Advisory |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 980441 Python (pip) Security Update for python-keystoneclient (GHSA-c3xq-cj8f-7829)