Unrated severityNVD Advisory· Published Mar 6, 2023· Updated Mar 6, 2025
CVE-2022-3854
CVE-2022-3854
Description
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service.
Affected products
11- Ceph/Cephdescription
- osv-coords10 versionspkg:rpm/opensuse/ceph&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/ceph&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/opensuse/ceph-test&distro=openSUSE%20Leap%2015.4pkg:rpm/suse/ceph&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.1pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.2pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/ceph&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3
< 16.2.11.58+g38d6afd3b78-150400.3.6.1+ 9 more
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150300.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150300.5.7.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150300.5.7.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150400.3.6.1
- (no CPE)range: < 16.2.11.58+g38d6afd3b78-150300.5.7.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.