XML Injection Vulnerability in OpenStack Swift by OpenStack
CVE-2013-2161

Currently unrated

Key Information:

Vendor
Openstack
Status
Vendor
CVE Published:
20 August 2013

Summary

An XML injection vulnerability exists in the account/utils.py file within OpenStack Swift, affecting the Folsom, Grizzly, and Havana releases. This flaw allows remote attackers to exploit unchecked user input, which can lead to invalid or spoofed responses from the Swift service by manipulating the account name. Attackers can leverage this vulnerability to disrupt service integrity and manipulate XML data handling.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.