CVE-2015-5245

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 18-08-2015 02:00

Last modified: - 18-08-2015 02:00

Total changes: - 9

Description

CVE-2015-5245 Ceph: RGW returns requested bucket name raw in Bucket response header

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:S/C:N/I:P/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

None

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

5.5

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=babeltrace-0 AND versionEndExcluding=1.2.4-3.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=calamari-server-0 AND versionEndExcluding=1.3-11.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ceph-1 AND versionEndExcluding=0.94.3-3.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ceph-deploy-0 AND versionEndExcluding=1.5.27.3-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ceph-puppet-modules-0 AND versionEndExcluding=0.1.1-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=facter-1 AND versionEndExcluding=1.7.6-2.1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=foreman-0 AND versionEndExcluding=1.7.2.33-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=foreman-installer-1 AND versionEndExcluding=1.7.5-2.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=foreman-proxy-0 AND versionEndExcluding=1.7.2.5-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=foreman-selinux-0 AND versionEndExcluding=1.7.2.13-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=hiera-0 AND versionEndExcluding=1.3.1-2.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ipxe-0 AND versionEndExcluding=20130517-7.1fm.gitc4bce43.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=lttng-tools-0 AND versionEndExcluding=2.4.1-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=lttng-ust-0 AND versionEndExcluding=2.4.1-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=puppet-0 AND versionEndExcluding=3.6.2-4.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=radosgw-agent-0 AND versionEndExcluding=1.2.3-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rhcs-installer-0 AND versionEndExcluding=0.1.0-1.el7cp

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-facter-0 AND versionEndExcluding=1.6.18-5.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-ancestry-0 AND versionEndExcluding=2.0.0-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-apipie-rails-0 AND versionEndExcluding=0.2.5-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-audited-0 AND versionEndExcluding=3.0.0-5.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-audited-activerecord-0 AND versionEndExcluding=3.0.0-8.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-bundler_ext-0 AND versionEndExcluding=0.3.0-6.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-deep_cloneable-0 AND versionEndExcluding=2.0.0-4.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-fast_gettext-0 AND versionEndExcluding=0.8.0-13.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-foreigner-0 AND versionEndExcluding=1.4.2-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-foreman_bootdisk-0 AND versionEndExcluding=4.0.2.13-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-friendly_id-0 AND versionEndExcluding=4.0.10.1-1.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-gettext_i18n_rails-0 AND versionEndExcluding=0.10.0-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-gettext_i18n_rails_js-0 AND versionEndExcluding=0.0.8-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-i18n_data-0 AND versionEndExcluding=0.2.7-5.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-ldap_fluff-0 AND versionEndExcluding=0.3.2-1.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-multi_json-0 AND versionEndExcluding=1.8.2-4.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-net-ldap-0 AND versionEndExcluding=0.3.1-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-oauth-0 AND versionEndExcluding=0.4.7-8.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-passenger-0 AND versionEndExcluding=4.0.18-19.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-pg-0 AND versionEndExcluding=0.12.2-10.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-po_to_json-0 AND versionEndExcluding=0.0.7-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-rabl-0 AND versionEndExcluding=0.9.0-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-rest-client-0 AND versionEndExcluding=1.6.7-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-ruby2ruby-0 AND versionEndExcluding=2.0.1-9.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-ruby_parser-0 AND versionEndExcluding=3.1.1-15.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-safemode-0 AND versionEndExcluding=1.2.1-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-scoped_search-0 AND versionEndExcluding=2.7.1-2.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-secure_headers-0 AND versionEndExcluding=1.3.3-1.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-sexp_processor-0 AND versionEndExcluding=4.1.3-7.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-sprockets-0 AND versionEndExcluding=2.10.1-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-uuidtools-0 AND versionEndExcluding=2.1.3-6.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-validates_lengths_from_database-0 AND versionEndExcluding=0.2.0-1.3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-rubygem-will_paginate-0 AND versionEndExcluding=3.0.2-10.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby193-ruby-wrapper-0 AND versionEndExcluding=0.0.2-6.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby-augeas-0 AND versionEndExcluding=0.5.0-1.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-ansi-0 AND versionEndExcluding=1.4.3-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-apipie-bindings-0 AND versionEndExcluding=0.0.11-1.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-awesome_print-0 AND versionEndExcluding=1.0.2-12.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-bundler_ext-0 AND versionEndExcluding=0.3.0-7.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-clamp-0 AND versionEndExcluding=0.6.2-2.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-ffi-0 AND versionEndExcluding=1.4.0-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-gssapi-0 AND versionEndExcluding=1.1.2-4.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-hashie-0 AND versionEndExcluding=2.0.5-2.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-highline-0 AND versionEndExcluding=1.6.21-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-kafo-0 AND versionEndExcluding=0.6.5.9-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-kafo_parsers-0 AND versionEndExcluding=0.0.4.4-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-little-plugger-0 AND versionEndExcluding=1.1.3-17.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-logging-0 AND versionEndExcluding=1.8.1-26.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-mime-types-0 AND versionEndExcluding=1.19-7.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-multi_json-0 AND versionEndExcluding=1.8.2-4.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-oauth-0 AND versionEndExcluding=0.4.7-8.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-passenger-0 AND versionEndExcluding=4.0.18-19.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-powerbar-0 AND versionEndExcluding=1.0.11-8.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rack-1 AND versionEndExcluding=1.4.1-13.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rack-protection-0 AND versionEndExcluding=1.5.0-7.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rake-0 AND versionEndExcluding=0.9.2.2-41.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rest-client-0 AND versionEndExcluding=1.6.7-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rkerberos-0 AND versionEndExcluding=0.1.2-3.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-rubyipmi-0 AND versionEndExcluding=0.10.0-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-sinatra-1 AND versionEndExcluding=1.3.6-27.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-smart_proxy_discovery-0 AND versionEndExcluding=1.0.2.1-1.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=rubygem-tilt-0 AND versionEndExcluding=1.3.3-18.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby-rgen-0 AND versionEndExcluding=0.6.5-2.el7sat

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ruby-shadow-0 AND versionEndExcluding=1.4.1-21.el7

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=userspace-rcu-0 AND versionEndExcluding=0.7.9-2.el7rhgs

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.3

AND

product=ceph AND version=

vendor=Red Hat Enterprise Linux AND product=ceph_storage AND version=1.2

Reference

Keywords

REDHAT

CVE-2015-5245

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.