CVE-2021-3524 — Vulnetix

Try Vulnetix Request Demo

CVE-2021-3524 PUBLISHED

A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway) in versions before 14.2.21. The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the response when the CORS request is made. In addition, the prior bug fix for CVE-2020-10753 did not account for the use of \r as a header separator, thus a new flaw has been created.

EPSS 0.86% · 74.9th percentile

Risk Scores

EPSS Score

0.86%

74.9th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:Pro:16.04:LTS	ceph	0, 0.94.3-0ubuntu2, 0.94.5-0ubuntu1
Ubuntu:20.04:LTS	ceph	15.2.11-0ubuntu0.20.04.2, 0, 14.2.2-0ubuntu3
Ubuntu:18.04:LTS	ceph	12.2.13-0ubuntu0.18.04.5, 12.2.13-0ubuntu0.18.04.6, 12.2.13-0ubuntu0.18.04.7

Timeline

May 17, 2021 CVE Published
May 18, 2021 EPSS Score
Jul 20, 2021 EPSS Score
Nov 19, 2021 EPSS Score
Jan 6, 2022 EPSS Score
Jan 19, 2022 EPSS Score
Feb 4, 2022 EPSS Score
Apr 1, 2022 EPSS Score
May 21, 2022 EPSS Score
Jul 22, 2022 EPSS Score
Sep 21, 2022 EPSS Score
Jan 21, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2021-3524 third-party-advisory
https://ubuntu.com/security/notices/USN-4998-1 vendor-advisory
https://ubuntu.com/security/notices/USN-5128-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2021-3524 third-party-advisory
https://ubuntu.com/security/notices/USN-7706-1 vendor-advisory

Open in Interactive Console →