PyPI/keystonemiddleware — 6 CVEs

HIGH7.5CVE-2015-1852OpenStack keystonemiddleware and python-keystoneclient vulnerable to man-in-the-middle attacks

from 0, < 1.6.0

HIGH7.5CVE-2015-1852OpenStack keystonemiddleware and python-keystoneclient vulnerable to man-in-the-middle attacks

from 0, < 1.6.0

HIGH7.5CVE-2015-7546OpenStack Identity Keystone and keystonemiddleware Insufficiently Protected Credentials

>= 2.4.0, < 4.1.0

HIGH7.5OpenStack Identity Keystone and keystonemiddleware Insufficiently Protected Credentials

from 0, < 1.5.4, >= 1.6.0, < 2.3.3

MEDIUM5.9OpenStack keystonemiddleware does not verify certificate

from 0, < 0.11.0

MEDIUM5.9OpenStack keystonemiddleware does not verify certificate

from 0, < 0.11.0, >= 1.0, < 1.2.0

pkg:PyPI/keystonemiddleware