vulnerability

Huawei EulerOS: CVE-2020-1760: ceph-common security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:P/A:N)	Apr 23, 2020	Sep 7, 2021	Apr 1, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:P/A:N)

Published

Apr 23, 2020

Added

Sep 7, 2021

Modified

Apr 1, 2026

Description

A flaw was found in the Ceph Object Gateway, where it supports request sent by an anonymous user in Amazon S3. This flaw could lead to potential XSS attacks due to the lack of proper neutralization of untrusted input.

Solutions

huawei-euleros-2_0_sp5-upgrade-ceph-commonhuawei-euleros-2_0_sp5-upgrade-librados2huawei-euleros-2_0_sp5-upgrade-librbd1huawei-euleros-2_0_sp5-upgrade-python-radoshuawei-euleros-2_0_sp5-upgrade-python-rbd

References

CVE-2020-1760
https://attackerkb.com/topics/CVE-2020-1760
CWE-79
EULEROS-EulerOS-SA-2021-2322
EUVD-EUVD-2020-12588
https://euvd.enisa.europa.eu/vulnerability/EUVD-2020-12588

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report