Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2017-16613

Published: 21/11/2017 Updated: 12/12/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Swift

Vulnerability Summary

An issue exists in middleware.py in OpenStack Swauth up to and including 1.2.0 when used with OpenStack Swift up to and including 2.15.1. The Swift object store and proxy server are saving (unhashed) tokens retrieved from the Swauth middleware authentication mechanism to a log file as part of a GET URI. This allows malicious users to bypass authentication by inserting a token into an X-Auth-Token header of a new request. NOTE: github.com/openstack/swauth URLs do not mean that Swauth is maintained by an official OpenStack project team.

Vulnerable Product Search on Vulmon Subscribe to Product

openstack swift

openstack swauth

debian debian linux 9.0

Vendor Advisories

Debian CVElist Bug Report Logs: swauth: Swift object/proxy server writing swauth Auth Token to log file (CVE-2017-16613)
Debian Bug report logs - #882314 swauth: Swift object/proxy server writing swauth Auth Token to log file (CVE-2017-16613) Package: src:swauth; Maintainer for src:swauth is Debian OpenStack <team+openstack@trackerdebianorg>; Reported by: "Ondřej Nový" <novy@ondrejorg> Date: Tue, 21 Nov 2017 11:21:02 UTC Severity: ...
Debian Security Advisories: DSA-4044-1 swauth -- security update
A vulnerability has been discovered in swauth, an authentication system for Swift, a distributed virtual object store used in Openstack The authentication token for an user is saved in clear text to the log file, which could enable an attacker with access to the logs to bypass the authentication provided by swauth For the stable distribution (str ...

References

CWE-287https://github.com/openstack/swauth/commit/70af7986265a3defea054c46efc82d0698917298https://bugs.launchpad.net/swift/+bug/1655781https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882314https://www.debian.org/security/2017/dsa-4044http://www.securityfocus.com/bid/101926https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882314https://nvd.nist.govhttps://www.debian.org/security/./dsa-4044
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook