GHSA-q45h-chc8-hvp6

Опубликовано: 14 мая 2022

Источник: github

Github: Прошло ревью

Описание

OpenStack Object Storage (Swift) Sensitive Data Exposure

OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obtain sensitive information via a PUT tempurl and a DLO object manifest that references an object in another container.

Ссылки

Пакеты

Наименование

swift

pip

Затронутые версииВерсия исправления

< 2.4.0

2.4.0

EPSS

Процентиль: 78%

0.01146

Низкий

CVE ID

CVE-2015-5223

Дефекты

CWE-200

Связанные уязвимости

CVE-2015-5223

ubuntu

больше 10 лет назад

OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obtain sensitive information via a PUT tempurl and a DLO object manifest that references an object in another container.

CVE-2015-5223

redhat

больше 10 лет назад

OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obtain sensitive information via a PUT tempurl and a DLO object manifest that references an object in another container.

CVE-2015-5223

nvd

больше 10 лет назад

OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obtain sensitive information via a PUT tempurl and a DLO object manifest that references an object in another container.

CVE-2015-5223

debian

больше 10 лет назад

OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obta ...

EPSS

Процентиль: 78%

0.01146

Низкий

CVE ID

CVE-2015-5223

Дефекты

CWE-200