VYPR

RadosGW

by Red Hat

CVEs (1)

  • CVE-2020-10753MedJun 26, 2020
    risk 0.35cvss 5.4epss 0.02

    A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the…