Lucene search
+L
OpenstackSwift

4 matches found

CVE
CVE
added 2015/04/17 5:0 p.m.103 views

CVE-2015-1856

Summary: CVE-2015-1856 affects OpenStack Object Storage (Swift) where, if allow_version is configured, an authenticated user who has listing access to the x-versions-location container can delete the latest version of a versioned object. This relies on Swift’s versioned-object handling and access...

5.5CVSS6AI score0.03949EPSS
CVE
CVE
added 2015/10/26 5:0 p.m.86 views

CVE-2015-5223

OpenStack Object Storage (Swift) before 2.4.0 is affected. A flaw in tempurls allows an attacker with a PUT tempurl key to obtain sensitive information by referencing an object in another container, enabling partial information disclosure. Upgrading to Swift 2.4.0+ or applying vendor advisories (...

5CVSS7AI score0.02583EPSS
CVE
CVE
added 2014/02/18 7:0 p.m.64 views

CVE-2013-6396

The CVE-2013-6396 entry concerns the OpenStack Python Swift client, python-swiftclient, versions 1.0 through 1.9.0, which do not verify X.509 certificates on SSL connections. This allows an attacker to perform a man-in-the-middle attack to spoof the Swift server and read sensitive data via a craf...

5.8CVSS5.8AI score0.00732EPSS
CVE
CVE
added 2026/06/23 5:3 p.m.32 views

CVE-2026-50221

CVE-2026-50221 affects OpenStack Swift prior to 2.37.2, where proxy-server fails to strip internal update headers (X-Container-Host, X-Container-Device, X-Delete-At-Host, X-Delete-At-Device) from client requests before forwarding to object-servers. An authenticated user with write access can inje...

5.4CVSS6AI score0.00146EPSS