Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenStack Object Storage 信息泄露漏洞
Vulnerability Description
OpenStack是美国国家航空航天局(National Aeronautics and Space Administration)和美国Rackspace公司合作研发的一个云平台管理项目。OpenStack Object Storage(又名Swift)是其中的一个用于存储永久静态数据的存储项目。 OpenStack Object Storage中的TempURL中间件中存在安全漏洞。远程攻击者可借助对象名和实时旁信道攻击利用该漏洞获取机密的URL。以下版本受到影响:OpenStack Object S
CVSS Information
N/A
Vulnerability Type
N/A