CVE-2018-7262

Опубликовано: 19 мар. 2018

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service.

Релиз	Статус	Примечание
artful	not-affected
devel	not-affected	12.2.4-0ubuntu1
esm-infra-legacy/trusty	not-affected
esm-infra/xenial	not-affected
precise/esm	not-affected
trusty	not-affected
trusty/esm	not-affected
upstream	needs-triage
xenial	not-affected

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2018-7262

EPSS

Процентиль: 80%

0.01398

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2018-7262

CVSS3: 7.3

redhat

почти 8 лет назад

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service.

CVE-2018-7262

CVSS3: 7.5

nvd

почти 8 лет назад

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service.

CVE-2018-7262

CVSS3: 7.5

debian

почти 8 лет назад

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGW ...

GHSA-8gpf-89wg-vgwp

CVSS3: 7.5

github

больше 3 лет назад

In Ceph before 12.2.3 and 13.x through 13.0.1, the rgw_civetweb.cc RGWCivetWeb::init_env function in radosgw doesn't handle malformed HTTP headers properly, allowing for denial of service.

openSUSE-SU-2018:2479-1

suse-cvrf

больше 7 лет назад

Security update for ceph

EPSS

Процентиль: 80%

0.01398

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2018-7262

Описание

Пакет ceph

Ссылки на источники

Связанные уязвимости