RHSA-2026:2769 Red Hat Security Advisory: Red Hat Ceph Storage 7.1 security and bug fix updates
Details
CVSS v3
7.5
NVD published
2025-11-12 19:15:34
EPSS
0.2% probability · 43.6th percentile — 2026-04-03
Affected versions
cpe:2.3:a:redhat:ceph:*:*:*:*:*:*:*:*
Summary
Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument `x-amz-copy-source` to put an object and specifying an empty string as its content leads to the RGW daemon crashing, resulting in a DoS attack. As of time of publication, no known patched versions exist.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.