A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1, for Red Hat OpenStack Platform. The novajoin API lacked sufficient access control, allowing any keystone authenticated user to generate FreeIPA tokens.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Novajoin | Python | * | 1.1.1 (excluding) |