Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2014-8177

Published: 07/06/2016 Updated: 22/04/2019
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N
Subscribe to Redhat

Vulnerability Summary

The Red Hat gluster-swift package, as used in Red Hat Gluster Storage (formerly Red Hat Storage Server), allows remote authenticated users to bypass the max_meta_count constraint via multiple crafted requests which exceed the limit when combined.

Vulnerable Product Search on Vulmon Subscribe to Product

redhat gluster_storage_management_console 3.1

redhat gluster_storage_server 3.1

redhat storage native client -

Vendor Advisories

Red Hat: CVE-2014-8177
A flaw was found in the metadata constraints in Red Hat Gluster Storage's OpenStack Object Storage (swiftonfile) By adding metadata in several separate calls, a malicious user could bypass the max_meta_count constraint, and store more metadata than allowed by the configuration ...

References

CWE-284https://bugzilla.redhat.com/show_bug.cgi?id=1257525http://rhn.redhat.com/errata/RHSA-2015-1846.htmlhttp://www.openwall.com/lists/oss-security/2015/08/27/5http://rhn.redhat.com/errata/RHSA-2015-1845.htmlhttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2014-8177
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook