PT-2026-21835 · Rustfs · Rustfs

Nikeee

Published

2026-02-20

Updated

2026-03-02

CVE-2026-27607

CVSS v3.1

9.4

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions RustFS versions 1.0.0-alpha.56 through 1.0.0-alpha.82

Description RustFS does not properly validate policy conditions during presigned POST uploads (PostObject). This allows bypassing content-length-range, starts-with, and Content-Type constraints. Successful exploitation can lead to unauthorized file uploads exceeding size limits, uploads to arbitrary object keys, and content-type spoofing. These actions could result in storage exhaustion, unauthorized data access, and security bypasses. The PostObject function is involved in this issue.

Recommendations Update to RustFS version 1.0.0-alpha.83 or later.

Exploit

Fix

RCE

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-863

Related Identifiers

BDU:2026-05083

CVE-2026-27607

GHSA-W5FH-F8XH-5X3P

Affected Products

Rustfs

PT-2026-21835 · Rustfs · Rustfs

CVE-2026-27607

Weakness Enumeration

Related Identifiers

Affected Products

References · 18