Medium severity6.5NVD Advisory· Published Apr 12, 2013· Updated Jun 16, 2026
CVE-2013-0270
CVE-2013-0270
Description
A flaw was found in OpenStack Keystone. A remote attacker could exploit this vulnerability by sending a large HTTP request, specifically by providing a long tenant name when requesting a token. This could lead to a denial of service, consuming excessive CPU and memory resources on the affected system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
keystonePyPI | < 8.0.0a0 | 8.0.0a0 |
Affected products
5cpe:2.3:a:openstack:keystone:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:openstack:keystone:*:*:*:*:*:*:*:*range: >=2012.1,<=2012.1.3
- cpe:2.3:a:openstack:keystone:2013.1:milestone1:*:*:*:*:*:*
- cpe:2.3:a:openstack:keystone:2013.1:milestone2:*:*:*:*:*:*
- cpe:2.3:a:openstack:keystone:2013.1:milestone3:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
9- launchpad.net/keystone/grizzly/2013.1nvdPatchThird Party AdvisoryWEB
- rhn.redhat.com/errata/RHSA-2013-0708.htmlnvdThird Party AdvisoryWEB
- bugs.launchpad.net/keystone/+bug/1099025nvdThird Party AdvisoryWEB
- bugzilla.redhat.com/show_bug.cginvdThird Party AdvisoryWEB
- github.com/advisories/GHSA-4ppj-4p4v-jf4pghsaADVISORY
- github.com/openstack/keystone/commit/7691276b869a86c2b75631d5bede9f61e030d9d8nvdThird Party AdvisoryWEB
- github.com/openstack/keystone/commit/82c87e5638ebaf9f166a9b07a0155291276d6fdcnvdThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2013-0270ghsaADVISORY
- access.redhat.com/security/cve/CVE-2013-0270nvdWEB
News mentions
0No linked articles in our index yet.