cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-10753,https://securityvulnerability.io/vulnerability/CVE-2020-10753,,A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the response when the CORS request is made. Ceph versions 3.x and 4.x are vulnerable to this issue.,Red Hat,Red Hat Ceph Storage,5.4,MEDIUM,0.0022499999031424522,false,false,false,false,,false,false,2020-06-26T00:00:00.000Z,0
CVE-2019-19337,https://securityvulnerability.io/vulnerability/CVE-2019-19337,,A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by sending a specially crafted HTTP Content-Length header to the Ceph RADOS Gateway server.,Red Hat,Ceph Storage,6.5,MEDIUM,0.0008500000112690032,false,false,false,false,,false,false,2019-12-23T16:18:04.000Z,0