{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-25T01:42:11.727","vulnerabilities":[{"cve":{"id":"CVE-2022-2447","sourceIdentifier":"secalert@redhat.com","published":"2022-09-01T21:15:09.547","lastModified":"2026-06-17T04:41:54.857","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A flaw was found in Keystone. There is a time lag (up to one hour in a default configuration) between when security policy says a token should be revoked from when it is actually revoked. This could allow a remote administrator to secretly maintain access for longer than expected."},{"lang":"es","value":"Se ha encontrado un fallo en Keystone. Hay un desfase (de hasta una hora en una configuración por defecto) entre el momento en que la política de seguridad dice que un token debe ser revocado y el momento en que realmente lo es. Esto podría permitir a un administrador remoto mantener secretamente el acceso durante más tiempo del esperado"}],"affected":[{"source":"secalert@redhat.com","affectedData":[{"vendor":"n/a","product":"openstack-keystone","versions":[{"version":"openstack-keystone as shipped in Red Hat OpenStack 16.1 and 16.2","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H","baseScore":6.6,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":0.7,"impactScore":5.9}]},"weaknesses":[{"source":"secalert@redhat.com","type":"Secondary","description":[{"lang":"en","value":"CWE-324"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-672"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:openstack:keystone:-:*:*:*:*:*:*:*","matchCriteriaId":"568B4FBB-D454-47AA-83BC-D625114FEF49"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:redhat:openstack:16.1:*:*:*:*:*:*:*","matchCriteriaId":"C9D3F4FF-AD3D-4D17-93E8-84CAFCED2F59"},{"vulnerable":false,"criteria":"cpe:2.3:a:redhat:openstack:16.2:-:*:*:*:*:*:*","matchCriteriaId":"FFE398FE-EE7C-4B64-ABB6-24697E047C85"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*","matchCriteriaId":"DCC81071-B46D-4F5D-AC25-B4A4CCC20C73"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*","matchCriteriaId":"4B3000D2-35DF-4A93-9FC0-1AD3AB8349B8"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*","matchCriteriaId":"B1987BDA-0113-4603-B9BE-76647EB043F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:redhat:storage:3.0:*:*:*:*:*:*:*","matchCriteriaId":"379A5883-F6DF-41F5-9403-8D17F6605737"}]}]}],"references":[{"url":"https://access.redhat.com/security/cve/CVE-2022-2447","source":"secalert@redhat.com","tags":["Vendor Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2105419","source":"secalert@redhat.com","tags":["Exploit","Issue Tracking","Vendor Advisory"]},{"url":"https://access.redhat.com/security/cve/CVE-2022-2447","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2105419","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Issue Tracking","Vendor Advisory"]}]}}]}