Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:17 a.m.10 views

CVE-2024-28717

An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component...

4.9CVSS7.8AI score0.00892EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:45 a.m.13 views

CVE-2024-28716

An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component...

7.5CVSS8AI score0.01365EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/30 12:0 a.m.9 views

PT-2024-22536 · Openstack · Openstack Storlets

Name of the Vulnerable Software and Affected Versions: OpenStack Storlets yoga-eom affected versions not specified Description: An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component. Recommendations: At the moment, there is no...

7.5CVSS8AI score0.01365EPSS
Exploits0References8
Veracode
Veracode
added 2024/04/23 5:53 a.m.21 views

Time-of-check Time-of-use (TOCTOU) Attack

OpenStack Storlets is vulnerable to Time-of-check Time-of-use TOCTOU Attack. The vulnerability is caused due to a lack of strict permission checks and restriction, leading to improper permission settings on file creation. This allows an attacker to gain unauthorized access to or modify sensitive...

4.9CVSS6.5AI score0.00892EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.7 views

OpenStack Storlets 安全漏洞

OpenStack Storlets is an Openstack Swift extension to OpenStack open source. A security vulnerability exists in OpenStack Storlets. A remote attacker can exploit this vulnerability to execute arbitrary code via the gateway.py component...

4.9CVSS7.8AI score0.00892EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/22 12:0 a.m.12 views

PT-2024-22537

Name of the Vulnerable Software and Affected Versions OpenStack Storlets version yoga-eom Description The issue allows a remote attacker to execute arbitrary code via the gateway.py component. Recommendations For OpenStack Storlets version yoga-eom, at the moment, there is no information about a...

7.8CVSS6.4AI score0.00892EPSS
Exploits0References9
Rows per page
Query Builder