Computer Security
[EN] securityvulns.ru no-pyccku


OpenStack Swift security vulnerabilities
Published:24.08.2015
Source:
SecurityVulns ID:14649
Type:remote
Threat Level:
5/10
Description:Few restriction bypass vulnerabilities.
Affected:OPENSTACK : swift 2.3
CVE:CVE-2015-1856 (OpenStack Object Storage (Swift) before 2.3.0, when allow_version is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container.)
 CVE-2014-7960 (OpenStack Object Storage (Swift) before 2.2.0 allows remote authenticated users to bypass the max_meta_count and other metadata constraints via multiple crafted requests which exceed the limit when combined.)
Original documentdocumentUBUNTU, [USN-2704-1] Swift vulnerabilities (24.08.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod