Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3
CVE-2014-0006
- EPSS 0.26%
- Published 23.01.2014 01:55:04
- Last modified 11.04.2025 00:51:21
The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack.
- EPSS 0.88%
- Published 20.08.2013 22:55:04
- Last modified 11.04.2025 00:51:21
OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous" tombstone consumption and Swift cluster slowdown) via a DELETE request with a timestamp that is older than expected.
9.8
CVE-2012-4406
- EPSS 7.79%
- Published 22.10.2012 23:55:06
- Last modified 11.04.2025 00:51:21
OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object.