CVE-2021-3563 - AskarLabs CVE Database

CVE-2021-3563

Vendor N/A

Product keystone

Weakness CWE-863 · Incorrect authorization

Published August 26, 2022

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. The highest threat from this vulnerability is to data confidentiality and integrity.

Key dates

02Disclosure timeline

August 26, 2022 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-3563

Related vulnerabilities

04Related CVE

CVE-2020-15248 Privilege escalation by backend users assigned to the default "Publisher" system role CVE-2026-45148 SiYuan: Broken access control in SiYuan publish-mode Readers can enumerate metadata CVE-2026-42999 CVE-2026-53738 Copy & Delete Posts through 1.5.4 Privilege Escalation via cdp_action_handling Handler CVE-2026-42431 OpenClaw < 2026.4.8 - Persistent Profile Mutation via node.invoke(browser.proxy) Bypass