Server-side SSL certificate validation failure in OpenStack Keystone and Compute

Server-side SSL certificate validation failure in OpenStack Keystone and Compute

CVE-2013-2255 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates.

Learn more about our Cis Benchmark Audit For Server Software.