3 matches found
USN-7182-1: Ceph vulnerability
It was discovered that Ceph incorrectly handled unsupported JWT algorithms in the RadosGW gateway. An attacker could possibly use this issue to bypass certain authentication checks and restrictions...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : Ceph vulnerability (USN-7182-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7182-1 advisory. It was discovered that Ceph incorrectly handled unsupported JWT algorithms in the RadosGW gateway. An attacker could possibly use this issue t...
PT-2020-3005
Name of the Vulnerable Software and Affected Versions Red Hat Ceph Storage versions 3.x and 4.x Description A flaw was found in the Red Hat Ceph Storage RadosGW Ceph Object Gateway related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag ...