CVE advisoryCRITICAL
CVE-2026-22797
OpenStack Keystonemiddleware OAuth2 Token Vulnerability Allows Privilege Escalation
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
An issue exists in OpenStack keystonemiddleware that fails to sanitize incoming OAuth 2.0 authentication headers. This could allow an authenticated attacker to escalate privileges or impersonate users by sending forged identity headers, impacting deployments that use the external_oauth2_token middleware.