CVE-2021-3524
published 2021-05-17CVE-2021-3524: A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is related to the injection of HTTP…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the response when the CORS request is made. In addition, the prior bug fix for CVE-2020-10753 did not account for the use of \r as a header separator, thus a new flaw has been created.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | ceph | < ceph 14.2.21-1 (bookworm) | ceph 14.2.21-1 (bookworm) |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| redhat | ceph | < 14.2.21 | 14.2.21 |
| redhat | ceph | >= 0 < 14.2.21-1 | 14.2.21-1 |
| redhat | ceph | >= 0 < 14.2.21-1 | 14.2.21-1 |
| redhat | ceph | >= 0 < 14.2.21-1 | 14.2.21-1 |
| redhat | ceph | >= 0 < 14.2.21-1 | 14.2.21-1 |
| redhat | ceph | >= 0 < 12.2.13-0ubuntu0.18.04.10 | 12.2.13-0ubuntu0.18.04.10 |
| redhat | ceph | >= 0 < 15.2.12-0ubuntu0.20.04.1 | 15.2.12-0ubuntu0.20.04.1 |
| redhat | ceph | >= 0 < 0.80.11-0ubuntu1.14.04.4+esm3 | 0.80.11-0ubuntu1.14.04.4+esm3 |
| redhat | ceph | >= 0 < 10.2.11-0ubuntu0.16.04.3+esm2 | 10.2.11-0ubuntu0.16.04.3+esm2 |
| redhat | ceph_storage | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
osv7.1HIGH