CVE-2012-3542

EPSS 1.95% · P84 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-3542

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

OpenStack Keystone, as used in OpenStack Folsom before folsom-rc1 and OpenStack Essex (2012.1), allows remote attackers to add an arbitrary user to an arbitrary tenant via a request to update the user's default tenant to the administrative API. NOTE: this identifier was originally incorrectly assigned to an open redirect issue, but the correct identifier for that issue is CVE-2012-3540.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OpenStack Keystone 权限许可和访问控制问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Keystone是OpenStack开源的一款强大的CMS。用于帮助您比任何其他 Cms 或应用程序框架更快地构建和扩展。 Keystone中存在权限许可和访问控制问题漏洞。攻击者利用该漏洞获得未授权访问到受影响应用程序，有助于进一步攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-3542

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-3542

请登录查看更多情报信息。

https://bugs.launchpad.net/keystone/+bug/1040626x_refsource_CONFIRM
https://github.com/openstack/keystone/commit/c13d0ba606f7b2bdc609a7f388334e5efec3f3aax_refsource_CONFIRM
http://secunia.com/advisories/50494third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/50467third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/55326vdb-entryx_refsource_BID
https://lists.launchpad.net/openstack/msg16282.htmlmailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/08/30/6mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-3542

Same Patch Batch · n/a · 2012-09-05 · 40 CVEs total

CVE-2011-4450		WikkaWiki 路径遍历漏洞
CVE-2012-4393		ownCloud 多个跨站请求伪造漏洞
CVE-2012-4394		ownCloud ‘apps/files/js/filelist.js’ 跨站脚本漏洞
CVE-2012-4395		ownCloud ‘index.php’跨站脚本漏洞
CVE-2012-4396		ownCloud 多个跨站脚本漏洞
CVE-2012-4397		ownCloud 多个跨站脚本漏洞
CVE-2012-4752		ownCloud ‘appconfig.php’权限许可和访问控制漏洞
CVE-2012-4753		ownCloud 多个跨站请求伪造漏洞
CVE-2011-4448		WikkaWiki SQL注入漏洞
CVE-2011-4449		WikkaWiki 安全漏洞
CVE-2012-4392		ownCloud ‘index.php’安全漏洞
CVE-2011-4451		WikkaWiki多个安全漏洞
CVE-2011-4452		WikkaWiki AdminUsers组件跨站请求伪造漏洞
CVE-2012-3012		Arbiter Power Sentinel 拒绝服务漏洞
CVE-2012-2063		Drupal ‘Slidebox’ 安全绕过漏洞
CVE-2012-2064		Drupal ‘Views Language Switcher’跨站脚本漏洞
CVE-2012-2065		Drupal ‘Language Icons’ 跨站脚本漏洞
CVE-2012-2066		Drupal FCKeditor/CKEditor模块跨站脚本漏洞
CVE-2012-2067		Drupal 多个未明安全漏洞
CVE-2012-2068		Drupal Fancy Slide模块多个跨站脚本漏洞

Showing top 20 of 40 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-3542

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-3542

I. Basic Information for CVE-2012-3542

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-3542

III. Intelligence Information for CVE-2012-3542

Same Patch Batch · n/a · 2012-09-05 · 40 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-3542

Leave a comment