PT-2014-8345 · Openstack+1 · Openstack Object Storage+1

Rajaneesh Singh

+1

·

Publicado

2014-10-17

·

Atualizado

2022-05-17

·

CVE-2014-7960

CVSS v2.0

4.0

Média

VetorAV:N/AC:L/Au:S/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions OpenStack Object Storage (Swift) versions prior to 2.2.0
Description The issue allows remote authenticated users to bypass certain metadata constraints, such as max meta count, by sending multiple crafted requests that exceed the limit when combined.
Recommendations For versions prior to 2.2.0, update to version 2.2.0 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

CVE-2014-7960
GHSA-G6X3-55QV-X6P2
RHSA-2015:0835
RHSA-2015:0836
RHSA-2015:1495
SUSE-SU-2015:1846-1
USN-2704-1

Produtos afetados

Openstack Object Storage
Ubuntu