A flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Barbican | Openstack | - (including) | - (including) |