2 matches found
Swift: unauthorized deletion of versioned Swift object
A flaw was found in OpenStack Object Storage that could allow an authenticated user to delete the most recent version of a versioned object regardless of ownership. To exploit this flaw, an attacker must know the name of the object and have listing access to the x-versions-location container...
USN-2704-1 swift vulnerabilities
Rajaneesh Singh discovered Swift does not properly enforce metadata limits. An attacker could abuse this issue to store more metadata than allowed by policy. CVE-2014-7960 Clay Gerrard discovered Swift allowed users to delete the latest version of object regardless of object permissions when...