CVE-2024-48916

{"id": "CVE-2024-48916", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 2.8}]}, "published": "2025-07-30T20:15:33.423", "references": [{"url": "https://github.com/ceph/ceph/security/advisories/GHSA-5g9m-mmp6-93mq", "source": "security-advisories@github.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-345"}]}], "descriptions": [{"lang": "en", "value": "Ceph is a distributed object, block, and file storage platform. In versions 19.2.3 and below, it is possible to send an JWT that has \"none\" as JWT alg. And by doing so the JWT signature is not checked. The vulnerability is most likely in the RadosGW OIDC provider. As of time of publication, a known patched version has yet to be published."}, {"lang": "es", "value": "Ceph es una plataforma distribuida de almacenamiento de objetos, bloques y archivos. En las versiones 19.2.3 y anteriores, es posible enviar un JWT con \"none\" como algoritmo JWT. Al hacerlo, no se verifica la firma JWT. Es probable que la vulnerabilidad se encuentre en el proveedor OIDC de RadosGW. Al momento de la publicaci\u00f3n, a\u00fan no se ha publicado una versi\u00f3n parcheada conocida."}], "lastModified": "2025-07-31T18:42:37.870", "sourceIdentifier": "security-advisories@github.com"}