Security Advisory

CVE-2024-47866

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-12 18:28:18

Last updated 2025-12-11 15:35:30

Assigner GitHub_M

State PUBLISHED

Description

Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument `x-amz-copy-source` to put an object and specifying an empty string as its content leads to the RGW daemon crashing, resulting in a DoS attack. As of time of publication, no known patched versions exist.

← Browse all CVEs View on cve.org ↗