8 matches found
EUVD-2016-7916
Malware in sbrugna...
CVE-2024-45816 Storage bucket Directory Traversal in @backstage/plugin-techdocs-backend
Backstage is an open framework for building developer portals. When using the AWS S3 or GCS storage provider for TechDocs it is possible to access content in the entire storage bucket. This can leak contents of the bucket that are not intended to be accessible, as well as bypass permission checks...
Information Disclosure
ceph is vulnerable to information disclosure attacks. The vulnerability exists as the RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL...
CVE-2016-7031
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL...
Code injection
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL...
CVE-2016-7031
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL...
CVE-2016-7031
Ceph RGW vulnerability CVE-2016-7031 affects Ceph before 10.0.1: when an authenticated-read ACL is applied to a bucket, an attacker can list bucket contents via a URL. Mitigation observed in connected advisories: Red Hat Ceph Storage 1.3.3 (RHSA-2016:1972) fixes this issue; Ubuntu USN-3452-1 list...
CVE-2016-7031
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL...