{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-11-19T00:00:00", "descriptions": [{"lang": "en", "value": "The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-25T19:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "93240", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/93240"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ceph/ceph/pull/6057"}, {"name": "RHSA-2016:1972", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1972.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://docs.ceph.com/docs/master/release-notes/#v10-0-1"}, {"name": "RHSA-2016:1973", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1973.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://tracker.ceph.com/issues/13207"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T01:50:46.959Z"}, "title": "CVE Program Container", "references": [{"name": "93240", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/93240"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/ceph/ceph/pull/6057"}, {"name": "RHSA-2016:1972", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1972.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://docs.ceph.com/docs/master/release-notes/#v10-0-1"}, {"name": "RHSA-2016:1973", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1973.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tracker.ceph.com/issues/13207"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2016-7031", "datePublished": "2016-10-03T18:00:00", "dateReserved": "2016-08-23T00:00:00", "dateUpdated": "2024-08-06T01:50:46.959Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ceph_project:ceph:*:*:*:*:*:*:*:*", "matchCriteriaId": "3F69D91A-E5A6-4AA3-B6DD-6CB718CD04ED", "versionEndIncluding": "10.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:redhat:ceph_storage:*:*:*:*:*:*:*:*", "matchCriteriaId": "5C5BBE44-8C66-4E08-8973-60631C2DA73B", "versionEndIncluding": "1.3.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL."}, {"lang": "es", "value": "El c\u00f3digo RGW en Ceph en versiones anteriores a 10.0.1, cuando la lectura autenticada ACL es aplicada a un compartimento, permite a atacantes remotos listar el contenido del compartimento a trav\u00e9s de una URL."}], "id": "CVE-2016-7031", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-10-03T18:59:12.057", "references": [{"source": "secalert@redhat.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "http://docs.ceph.com/docs/master/release-notes/#v10-0-1"}, {"source": "secalert@redhat.com", "tags": ["Release Notes", "Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1972.html"}, {"source": "secalert@redhat.com", "url": "http://rhn.redhat.com/errata/RHSA-2016-1973.html"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "url": "http://tracker.ceph.com/issues/13207"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/93240"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://github.com/ceph/ceph/pull/6057"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Vendor Advisory"], "url": "http://docs.ceph.com/docs/master/release-notes/#v10-0-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Third Party Advisory"], "url": "http://rhn.redhat.com/errata/RHSA-2016-1972.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2016-1973.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Issue Tracking", "Vendor Advisory"], "url": "http://tracker.ceph.com/issues/13207"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/93240"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://github.com/ceph/ceph/pull/6057"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}, {"lang": "en", "value": "CWE-254"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2016:1972", "cpe": "cpe:/a:redhat:ceph_storage:1.3::el7", "package": "calamari-server-0:1.3.3-2.el7cp", "product_name": "Red Hat Ceph Storage 1.3 for Red Hat Enterprise Linux 7", "release_date": "2016-09-29T00:00:00Z"}, {"advisory": "RHSA-2016:1972", "cpe": "cpe:/a:redhat:ceph_storage:1.3::el7", "package": "ceph-1:0.94.9-3.el7cp", "product_name": "Red Hat Ceph Storage 1.3 for Red Hat Enterprise Linux 7", "release_date": "2016-09-29T00:00:00Z"}, {"advisory": "RHSA-2016:1972", "cpe": "cpe:/a:redhat:ceph_storage:1.3::el7", "package": "ceph-deploy-0:1.5.36-1.el7cp", "product_name": "Red Hat Ceph Storage 1.3 for Red Hat Enterprise Linux 7", "release_date": "2016-09-29T00:00:00Z"}, {"advisory": "RHSA-2016:1972", "cpe": "cpe:/a:redhat:ceph_storage:1.3::el7", "package": "radosgw-agent-0:1.2.7-1.el7cp", "product_name": "Red Hat Ceph Storage 1.3 for Red Hat Enterprise Linux 7", "release_date": "2016-09-29T00:00:00Z"}, {"advisory": "RHSA-2016:1973", "cpe": "cpe:/a:redhat:ceph_storage:1.3::ubuntu:14.04", "product_name": "Red Hat Ceph Storage 1.3 for Ubuntu", "release_date": "2016-09-29T00:00:00Z"}], "bugzilla": {"description": "ceph: RGW permits bucket listing when authenticated_users=read", "id": "1372446", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1372446"}, "csaw": false, "cvss": {"cvss_base_score": "4.9", "cvss_scoring_vector": "AV:A/AC:M/Au:S/C:P/I:P/A:P", "status": "verified"}, "cvss3": {"cvss3_base_score": "3.0", "cvss3_scoring_vector": "CVSS:3.0/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N", "status": "verified"}, "details": ["The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL.", "A flaw was found in Ceph RGW code which allows an anonymous user to list contents of RGW bucket by bypassing ACL which should only allow authenticated users to list contents of bucket."], "name": "CVE-2016-7031", "package_state": [{"cpe": "cpe:/a:redhat:openstack-installer:5", "fix_state": "Not affected", "package_name": "Ceph", "product_name": "OpenStack Foreman"}, {"cpe": "cpe:/a:redhat:ceph_storage:2", "fix_state": "Not affected", "package_name": "ceph", "product_name": "Red Hat Ceph Storage 2"}, {"cpe": "cpe:/a:redhat:openstack:5::el6", "fix_state": "Not affected", "package_name": "Ceph", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5 (Icehouse)"}, {"cpe": "cpe:/a:redhat:openstack:6", "fix_state": "Not affected", "package_name": "Ceph", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6 (Juno)"}, {"cpe": "cpe:/a:redhat:openstack-installer:6", "fix_state": "Not affected", "package_name": "Ceph", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6 (Juno) Installer"}], "public_date": "2015-09-23T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-7031\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-7031"], "threat_severity": "Moderate"}