Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Minio Inc. Minio S3 server version prior to RELEASE.2018-05-16T23-35-33Z contains a Allocation of Memory Without Limits or Throttling (similar to CWE-774) vulnerability in write-to-RAM that can result in Denial of Service. This attack appear to be exploitable via Sending V4-(pre)signed requests with large bodies . This vulnerability appears to have been fixed in after commit 9c8b7306f55f2c8c0a5c7cea9a8db9d34be8faa7.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Minio S3 server 安全漏洞
Vulnerability Description
Minio S3 server是一款开源的、兼容Amazon S3的对象存储服务器,它主要用于存储图片、视频和日志文件等非结构化数据。 Minio S3 server RELEASE.2018-05-16T23-35-33Z之前版本中的write-to-RAM存在存在安全漏洞。攻击者可通过发送带有较大主体的V4-(预签名)已签名请求利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A