CNNVD-202511-1393 Information

CNNVD ID

CNNVD-202511-1393

Related CVE

CVE-2024-47866

• CNNVD Published: 2025-11-12

Description (Chinese)

Ceph是Ceph开源的一个文件存储平台。 Ceph 19.2.3及之前版本存在输入验证错误漏洞，该漏洞源于x-amz-copy-source参数处理不当，可能导致拒绝服务。

Description (English)

Ceph is a file storage platform for the Ceph open source. Cep 19.2.3 and previous versions had input-validation error holes, which stemmed from the mishandling of x-amz-copy-source parameters, which could lead to the denial of services.

Hazard Level

Medium

Vulnerability Type

输入验证错误

Affected Vendor

Ceph

Published

2025-11-12

Last Modified

2026-02-24

References

http://www.openwall.com/lists/oss-security/2025/11/11/3 https://github.com/ceph/ceph/security/advisories/GHSA-mgrm-g92q-f8h8 https://vigilance.fr/vulnerability/ceph-radosgw-denial-of-service-via-x-amz-copy-source-48711 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-47866