Description
A flaw was found in the way Ceph Object Gateway would process cross-origin HTTP requests if the CORS policy was set to allow origin on a bucket. A remote unauthenticated attacker could use this flaw to cause denial of service by sending a specially-crafted cross-origin HTTP request. Ceph branches 1.3.x and 2.x are affected.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Red Hat / ceph1.3 and 2 – 1.3 and 2
References
- MISChttp://rhn.redhat.com/errata/RHSA-2016-2954.html
- MISChttp://rhn.redhat.com/errata/RHSA-2016-2995.html
- MISChttp://www.securityfocus.com/bid/94936
- MISChttp://rhn.redhat.com/errata/RHSA-2016-2994.html
- MISChttp://tracker.ceph.com/issues/18187
- MISChttp://rhn.redhat.com/errata/RHSA-2016-2956.html
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-9579