VYPR
High severityNVD Advisory· Published Apr 15, 2014· Updated Jun 17, 2026

CVE-2014-2828

CVE-2014-2828

Description

The V3 API in OpenStack Identity (Keystone) 2013.1 before 2013.2.4 and icehouse before icehouse-rc2 allows remote attackers to cause a denial of service (CPU consumption) via a large number of the same authentication method in a request, aka "authentication chaining."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
keystonePyPI
< 8.0.0a08.0.0a0

Affected products

9
  • cpe:2.3:a:openstack:keystone:2013.1:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:openstack:keystone:2013.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:openstack:keystone:2013.2.3:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 8.0.0a0

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.