Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that ends with two slashes it can cause the rgw to crash, resulting in a denial of service. The greatest threat to the system is of availability.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Red Hat Ceph 输入验证错误漏洞
Vulnerability Description
Red Hat Ceph是美国红帽(Red Hat)公司的一套Linux PB级分布式文件系统。该系统的主要目标是设计成基于POSIX(可移植操作系统接口)的没有单点故障的分布式文件系统,使数据能容错和无缝的复制。 Ceph 存在输入验证错误漏洞,该漏洞源于在处理HTTP GET请求时对用户提供的输入验证不足。远程攻击者可利用该漏洞可以向快速URL发送一个以两个斜杠结尾的请求,这会导致rgw崩溃。以下产品及版本受到影响:Ceph: 14.0.0, 14.0.1, 14.1.0, 14.1.1, 14.2.
CVSS Information
N/A
Vulnerability Type
N/A