Vulnerabilities > CVE-2022-2447 - Operation on a Resource after Expiration or Release vulnerability in multiple products

CVSS 6.6 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

openstack

redhat

CWE-672

NVD

Published: 2022-09-01

Updated: 2022-10-01

Summary

A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected.

Vulnerable Configurations

Part	Description	Count
Application	Openstack Openstack Keystone -	1
Application	Redhat Redhat Openstack 16.1 Redhat Openstack 16.2 Redhat Storage 3.0 Redhat Quay 3.0.0 Redhat Openstack Platform 16.1 Redhat Openstack Platform 16.2	6

Common Weakness Enumeration (CWE)

CWE-672 - Operation on a Resource after Expiration or Release

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References