2016-10-03 18:00:00
redhat
PUBLISHED
The RGW code in Ceph before 10.0.1, when authenticated-read ACL is applied to a bucket, allows remote attackers to list the bucket contents via a URL.