CVE-2019-10222 vulnerability in Ceph and Other Products
Published on November 8, 2019
A flaw was found in the Ceph RGW configuration with Beast as the front end handling client requests. An unauthenticated attacker could crash the Ceph RGW server by sending valid HTTP headers and terminating the connection, resulting in a remote denial of service for Ceph RGW clients.
Weakness Type
Improper Handling of Exceptional Conditions
The software does not handle or incorrectly handles an exceptional condition.
Products Associated with CVE-2019-10222
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-10222 are published in these products:
Affected Versions
The Ceph Project ceph Version n/a is affected by CVE-2019-10222Exploit Probability
EPSS
2.66%
Percentile
85.50%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.