Medium severity4.3NVD Advisory· Published Jun 13, 2016· Updated Jun 17, 2026
CVE-2016-4911
CVE-2016-4911
Description
The Fernet Token Provider in OpenStack Identity (Keystone) 9.0.x before 9.0.1 (mitaka) allows remote authenticated users to prevent revocation of a chain of tokens and bypass intended access restrictions by rescoping a token.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
keystonePyPI | >= 9.0.0, < 9.0.1 | 9.0.1 |
Affected products
4cpe:2.3:a:keystone:openstack_identity:9.0.0.0:rc1:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:keystone:openstack_identity:9.0.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:keystone:openstack_identity:9.0.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:keystone:openstack_identity:9.0.0.0:rc3:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
12- security.openstack.org/ossa/OSSA-2016-008.htmlnvdPatchVendor AdvisoryWEB
- www.securityfocus.com/bid/90728nvdThird Party AdvisoryVDB Entry
- bugs.launchpad.net/keystone/+bug/1577558nvdVendor AdvisoryWEB
- github.com/advisories/GHSA-f82m-w3p3-cgp3ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-4911ghsaADVISORY
- review.openstack.orgnvdVendor Advisory
- www.openwall.com/lists/oss-security/2016/05/17/10nvdMailing ListWEB
- www.openwall.com/lists/oss-security/2016/05/17/11nvdMailing ListWEB
- github.com/openstack/keystone/commit/0d376025bae61bf5ee19d992c7f336b99ac69240ghsaWEB
- github.com/openstack/keystone/commit/ee1dc941042d1f71699971c5c30566af1b348572ghsaWEB
- github.com/pypa/advisory-database/tree/main/vulns/keystone/PYSEC-2016-38.yamlghsaWEB
- review.openstack.orgghsaWEB
News mentions
0No linked articles in our index yet.