CVE-2021-3563

HIGH Year: 2021
CVSS v3 Score
7.4
High
Weakness Type
CWE-863
View all →

Vulnerability Description

A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity.

Related Vulnerabilities

CVE-2019-17014

HIGH
CVSS:7.4(High)

If an image had not loaded correctly (such as when it is not actually an image), it could be dragged and dropped cross-domain, resulting in a cross-origin information leak. This vulnerability affects ...

CWE-8632019

CVE-2023-28352

HIGH
CVSS:7.4(High)

An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP broadcast discovery system, an attacker-controlled artificial Student Console can connect to and attack a ...

CWE-8632023

CVE-2023-6400

HIGH
CVSS:7.4(High)

Incorrect Authorization vulnerability in OpenTextâ„¢ ZENworks Configuration Management (ZCM) allows Unauthorized Use of Device Resources.This issue affects ZENworks Configuration Management (ZCM) versio...

CWE-8632023

CVE-2024-27309

HIGH
CVSS:7.4(High)

While an Apache Kafka cluster is being migrated from ZooKeeper mode to KRaft mode, in some cases ACLs will not be correctly enforced. Two preconditions are needed to trigger the bug: 1. The administra...

CWE-8632024

CVE-2024-27848

HIGH
CVSS:7.4(High)

This issue was addressed with improved permissions checking. This issue is fixed in macOS Sonoma 14.5, iOS 17.5 and iPadOS 17.5. A malicious app may be able to gain root privileges.

CWE-8632024