An issue in OpenStack Storlets yoga-eom allows a remote malicious user to execute arbitrary code via the gateway.py component.