CVE-2022-47950: XEE
First published: Wed Jan 18 2023(Updated: )
An issue was discovered in OpenStack Swift before 2.28.1, 2.29.x before 2.29.2, and 2.30.0. By supplying crafted XML files, an authenticated user may coerce the S3 API into returning arbitrary file contents from the host server, resulting in unauthorized read access to potentially sensitive data. This impacts both s3api deployments (Rocky or later), and swift3 deployments (Queens and earlier, no longer actively developed).
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| OpenStack Swift | <2.28.1 | |
| OpenStack Swift | >=2.29.0<2.29.2 | |
| OpenStack Swift | =2.30.0 | |
| Debian Debian Linux | =10.0 | |
| pip/swift | =2.30.0 | 2.30.1 |
| pip/swift | >=2.29.0<2.29.2 | 2.29.2 |
| pip/swift | <2.28.1 | 2.28.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://launchpad.net/bugs/1998625
- https://lists.debian.org/debian-lts-announce/2023/01/msg00021.html
- https://security.openstack.org/ossa/OSSA-2023-001.html
- https://www.debian.org/security/2023/dsa-5327
- https://nvd.nist.gov/vuln/detail/CVE-2022-47950
- https://github.com/openstack/swift/commit/12e54391861e7d182d58f89fb88b027e65842640
- https://github.com/openstack/swift/commit/7d13d1a82e1f5d01205a13184907501b4fcbe2b0
- https://github.com/openstack/swift/commit/8dd96470a859dc7b189404fb67bd3899ae9c617f
- https://github.com/openstack/swift/commit/b8467e190f6fc67fd8fb6a8c5e32b2aa6a10fd8e
- https://github.com/openstack/swift/commit/baa98848451b5c234443a068691e12841a5a8383
- https://github.com/openstack/swift/commit/c834e7a53d5a33a3fd13ffd954e6f4f4ee953dfc
- https://github.com/openstack/swift/commit/d8d04ef43c90079d436b2e49617b4425ba39c28e
- https://github.com/openstack/swift/commit/f10672514217adadfc776d9ea2ffb20a37ce073b
- https://github.com/advisories/GHSA-274c-rx2j-2v3x (Advisory)
Frequently Asked Questions
What is the vulnerability ID for this issue in OpenStack Swift?
The vulnerability ID for this issue in OpenStack Swift is CVE-2022-47950.
What is the severity of CVE-2022-47950?
The severity of CVE-2022-47950 is medium with a CVSS score of 6.5.
How does the vulnerability in OpenStack Swift occur?
The vulnerability in OpenStack Swift occurs when an authenticated user supplies crafted XML files.
What can an authenticated user do with the vulnerability in OpenStack Swift?
An authenticated user can coerce the S3 API into returning arbitrary file contents from the host server, resulting in unauthorized read access to potentially sensitive data.
Which versions of OpenStack Swift are affected by this vulnerability?
Versions before 2.28.1, 2.29.x before 2.29.2, and 2.30.0 of OpenStack Swift are affected by this vulnerability.
- collector/nvd-index
- agent/first-publish-date
- agent/remedy
- agent/type
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-274c-rx2j-2v3x
- alias/CVE-2022-47950
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/last-modified-date
- collector/nvd-cve
- source/NVD
- agent/softwarecombine
- agent/event
- collector/github-advisory
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/openstack
- canonical/openstack swift
- version/openstack swift/2.29.0
- version/openstack swift/2.30.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- package-manager/pip