XML Injection Vulnerability in OpenStack Swift by OpenStack
CVE-2013-2161

Currently unrated

Key Information:

Vendor

Openstack
Status
Havana
Opensuse
Grizzly
Folsom
Vendor
CVE Published:
20 August 2013

What is CVE-2013-2161?

An XML injection vulnerability exists in the account/utils.py file within OpenStack Swift, affecting the Folsom, Grizzly, and Havana releases. This flaw allows remote attackers to exploit unchecked user input, which can lead to invalid or spoofed responses from the Swift service by manipulating the account name. Attackers can leverage this vulnerability to disrupt service integrity and manipulate XML data handling.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.debian.org/security/2012/dsa-2737
vendor-advisoryx_refsource_DEBIAN
http://lists.opensuse.org/opensuse-updates/2013-07/msg000...
vendor-advisoryx_refsource_SUSE
https://bugs.launchpad.net/swift/+bug/1183884
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.