What the vulnerability does

01Description

A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service.

Key dates

02Disclosure timeline

March 6, 2023 CVE published
March 6, 2025 Record updated