In OpenStack Swift up to and including 2.10.1, 2.11.0 up to and including 2.13.0, and 2.14.0, the proxy-server logs full tempurl paths, potentially leaking reusable tempurl signatures to anyone with read access to these logs. All Swift deployments using the tempurl middleware are affected.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openstack swift |
||
openstack swift 2.14.0 |