CVE-2021-3524

CWE-20Improper Input ValidationCWE-7410 documents7 sources
Severity
6.5MEDIUM
EPSS
0.9%
top 25.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Redhat CephDebian Debian LinuxFedoraproject Fedora+1 more
Timeline
PublishedMay 17
Latest updateAug 20

Description

A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the response when the CORS request is made. In addition, the prior bug fix for CVE-2020-10753 did not account for the use of \r as a header separator, thus a new flaw has been created.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

NVDredhat/ceph< 14.2.21
Debianceph< 14.2.21-1+3
CVEListV5cephceph 14.2.21

Also affects: Debian Linux 9.0, Fedora 32, 33, 34

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

4
OSV
ceph vulnerabilities2025-08-20
GHSA
GHSA-3rmw-wm6w-rmcr: A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 142022-05-24
OSV
CVE-2021-3524: A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 142021-05-17
CVEList
CVE-2021-3524: A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 142021-05-17

📋Vendor Advisories

5
Ubuntu
Ceph vulnerabilities2025-08-20
Ubuntu
Ceph vulnerabilities2021-11-01
Ubuntu
Ceph vulnerabilities2021-06-25
Red Hat
gateway: radosgw: CRLF injection2021-04-15
Debian
CVE-2021-3524: ceph - A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in ve...2021
CVE-2021-3524 (MEDIUM CVSS 6.5) | A flaw was found in the Red Hat Cep | cvebase.io