Ceph RGW (civetweb) DC-2019-3821

2024-11-19

:

A vulnerability in civetweb, the frontend for Ceph RGW, allows unauthenticated attackers to exhaust file descriptors on the Ceph RADOS gateway, causing a denial-of-service (DoS) attack.

Vulnerability Details:

Platform: Ceph RGW (civetweb)
Version: Not specified
Vulnerability: Multiple connection establishment to exhaust file descriptors
Severity: Denial-of-Service (DoS)
Date: Published – March 27, 2019, Last Modified – November 19, 2024

What Undercode Says:

This CVE details a DoS vulnerability in Ceph RGW’s civetweb frontend. An attacker can exploit this by making multiple connections to overwhelm the service and prevent legitimate users from accessing it. It’s crucial to update Ceph RGW to a patched version to mitigate this risk.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top