13 matches found
CVE-2022-47950
OpenStack Swift contains a vulnerability (CVE-2022-47950) where a authenticated user can supply crafted XML to the S3 API, causing it to disclose arbitrary host files. Affected lines mention OpenStack Swift versions before 2.28.1, 2.29.x before 2.29.2, and 2.30.0, with impact on both s3api (Rocky...
CVE-2012-4406
OpenStack Swift prior to 1.7.0 is vulnerable: it uses the pickle loads function to serialize/deserialize metadata in memcached, enabling remote code execution via a crafted pickle object. Public advisories (RHSA-2012:1379) note that a fix exists but is not enabled by default; remediation involves...
CVE-2016-0738
CVE-2016-0738 affects OpenStack Swift (Object Storage) prior to 2.3.1 in Kilo, 2.4.x, and prior to 2.5.1 in Liberty. The issue is a memory-leak/unfinished-read vulnerability that can allow a remote attacker (authenticated) to cause a denial of service by exhausting proxy-server resources through ...
CVE-2015-1856
Summary: CVE-2015-1856 affects OpenStack Object Storage (Swift) where, if allow_version is configured, an authenticated user who has listing access to the x-versions-location container can delete the latest version of a versioned object. This relies on Swift’s versioned-object handling and access...
CVE-2014-3497
OpenStack Swift versions 1.11.0–1.13.1 are affected by a cross-site scripting (XSS) vulnerability caused by insufficient escaping of HTTP header values, enabling remote injection via the WWW-Authenticate header. Impact is XSS in affected users’ browsers; exploitation details are not provided in t...
CVE-2016-0737
CVE-2016-0737 affects OpenStack Swift before 2.4.0, where the proxy-server may consume resources due to not properly closing client connections after interrupted requests to a Large Object URL. This is corroborated by multiple connected entries (GHSA-972C-CFV8-2HQ8; RHSA advisories) indicating op...
CVE-2017-8761
OpenStack Swift CVE-2017-8761 affects proxy-server in Swift versions up to 2.14.0 (including 2.10.1, 2.11.0–2.13.0, 2.14.0). The proxy-server logs full tempurl paths, potentially exposing reusable tempurl signatures to anyone with read access to logs. All Swift deployments using the tempurl middl...
CVE-2013-4155
OpenStack Swift vulnerability CVE-2013-4155 affects Swift before 1.9.1 in Folsom, Grizzly, and Havana. An authenticated user can trigger a denial of service by issuing a DELETE request with an outdated timestamp, causing superfluous tombstone consumption and Swift cluster slowdown. The primary im...
CVE-2015-5223
OpenStack Object Storage (Swift) before 2.4.0 is affected. A flaw in tempurls allows an attacker with a PUT tempurl key to obtain sensitive information by referencing an object in another container, enabling partial information disclosure. Upgrading to Swift 2.4.0+ or applying vendor advisories (...
CVE-2014-0006
The CVE-2014-0006 issue affects OpenStack Swift, where the TempURL middleware exhibits a timing side-channel risk that can leak secret URLs. Affected releases are Swift 1.4.6–1.8.0, 1.9.0–1.10.0, and 1.11.0. Root cause: timing-based information leakage in TempURL handling when an object name is k...
CVE-2017-16613
CVE-2017-16613 affects OpenStack Swauth (middleware.py) when used with OpenStack Swift up to versions 2.15.1. The issue: the Swift object store and proxy may save unhashed authentication tokens to a log file as part of GET URIs, which enables an attacker to bypass authentication by injecting a to...
CVE-2014-7960
CVE-2014-7960 affects OpenStack Object Storage (Swift) before 2.2.0. A vulnerability in metadata constraints allows remote authenticated users to bypass max_meta_count and related limits by issuing multiple crafted requests that exceed the configured threshold. The issue is confirmed in multiple ...
CVE-2013-6396
The CVE-2013-6396 entry concerns the OpenStack Python Swift client, python-swiftclient, versions 1.0 through 1.9.0, which do not verify X.509 certificates on SSL connections. This allows an attacker to perform a man-in-the-middle attack to spoof the Swift server and read sensitive data via a craf...