Vulnerability Details CVE-2022-3854
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.8%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-3854
-
cpe:2.3:a:redhat:ceph_storage:3.0
-
cpe:2.3:a:redhat:ceph_storage:4.0
-
cpe:2.3:a:redhat:ceph_storage:5.0