HIGH 7.8
PYSEC-2026-1945
OpenStack Storlets arbitrary code execution vulnerability
상세
An issue in OpenStack Storlets yoga-eom allows a remote attacker to execute arbitrary code via the gateway.py component.
이 버전이 영향받나요?
사용 중인 패키지 버전을 입력하면 즉시 평가합니다.
영향 패키지
참고
- https://nvd.nist.gov/vuln/detail/CVE-2024-28717 [ADVISORY]
- https://github.com/openstack/storlets/commit/5ad58804af885db3eb7a78bea5000c401eeeb70e [WEB]
- https://bugs.launchpad.net/storlets/+bug/2047723 [WEB]
- https://gist.github.com/Fewword/f098d8d6375ac25e27b18c0e57be532f [WEB]
- https://github.com/openstack/storlets [PACKAGE]
- https://pypi.org/project/storlets [PACKAGE]
- https://github.com/advisories/GHSA-rfm2-f94j-qhjp [ADVISORY]