CVE-2013-4155

Published Aug 20, 2013
Last updated 11 years ago
CVSS info 4.0
Overview

Description: OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous" tombstone consumption and Swift cluster slowdown) via a DELETE request with a timestamp that is older than expected.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-119
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:openstack:folsom:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5BA13BC-F088-45AA-AD10-B74F89CE5375"
          },
          {
            "criteria": "cpe:2.3:a:openstack:grizzly:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A83ED744-9E3D-4510-B3E6-6DDE1090F0B7"
          },
          {
            "criteria": "cpe:2.3:a:openstack:havana:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77522028-683C-4708-AF46-50B49A0A2D15"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E81B0AB-FE07-480C-AA06-7123D158A01F",
            "versionEndIncluding": "1.9.0"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3363F1D-E377-4884-A982-95C16230282E"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09BA82A3-AD2E-4767-AC55-B77112E1E8B2"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B48FA39-ACAC-4176-954A-E244E5C40B43"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1E05C078-59BA-42E9-B46D-EA2F1A7A3AC2"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.1.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D4E8964-8F13-4202-B8FC-803C55E4DD07"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.1.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A22B59DB-7F87-4FAD-B717-3636887FFB0A"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01DD589E-25BC-4189-AC9C-3C339B64CBB7"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.2.0:gamma1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D752F8FE-8B75-412A-997E-C276B61E5A25"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.2.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04839CE3-2C55-4A95-A569-DB33C38EDCB1"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "77C700EB-E00A-49B3-8A73-E075CEC3D60A"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.3.0:gamma1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AAF1C7D-65A2-4DDD-B9DF-E947DE7D9394"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.3.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB71CE04-A7C2-4859-A95B-61E9FC27D955"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FA8EC8C-E00A-4E0D-BAF4-3EA0F6D0542D"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "190BEFEB-F468-44DD-8E5B-44AC6586E8B2"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "673B78FE-6D79-4603-AF96-14654B87D6DB"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "349679DF-B0AB-4238-8DA5-383FE1D1E595"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BF8C72E-C20B-4A1B-A2CA-9FB39BBD3F36"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4F16BA8-B732-4633-A1F5-244482249B11"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F65289A-8F41-4DFC-9B7E-C45F2A572C3E"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3EE50F0A-4411-48AC-89DD-530B44C46256"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.4.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CF91F03-51B1-4CF6-AE2A-2A03CFE2000A"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3697251-8EEA-4458-9717-155EAD0915F7"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9A118EA-10DD-4B99-9B49-9A36580C44CE"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E42DBA52-96EE-4662-8CB2-C2606E75CBA6"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29F37244-947C-479B-9F52-5D22BC5276EA"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.7.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9ED958FC-7275-4CF5-90A7-D05ACE84B523"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "945E4B61-33E9-4578-B778-231ACD281A40"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.7.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "953ED594-AF1B-4580-BC8D-05EF3CD71F6D"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2743AB4B-6A56-4E86-A5D7-3D1066032202"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.8.0:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5928EF1B-B236-475A-B204-82CAA30B1E22"
          },
          {
            "criteria": "cpe:2.3:a:openstack:swift:1.8.0:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33075789-58EE-4A71-8BA1-C3A515248DE4"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
